todolist_exe[.]zip

Sharing

Copy URL

Twitter E-mail

General

Target

todolist_exe.zip
Size

7.8MB
MD5

412020a2717d73df5663acbd84bae2f5
SHA1

dca090f60d7c74e7a2e7e0a2514ab3d78b10db85
SHA256

303be7260ad8330508e98c77c51cc47c0c27a609f65b7aeff3444bf9f6062bd0
SHA512

8edbf6de88ce5de662c461e31d34144a9e9349df049484fbaf13ab4df9b02b70450510490da9889cd3caafb63512de3e698eb4b8cf6d17df652d8b5db0d24d72
SSDEEP

196608:Ks9ZQzYmJ7z4duFyNTnSiOuqqPcPIoX0WwGegTlapmNjv9AQsUa1JdHM3fdsNL:1UBoeyrOu3kPBX8GJTla4w7JdqFsNL

Score

10^/10

Malware Config

Extracted

Language

ps1

Source

URLs

exe.dropper

http://abstractspoon.pbworks.com/f/todolist_exe.zip

Signatures

Unsigned PE 60 IoCs

Checks for missing Authenticode signature.

resource
unpack001/BouncyCastle.Crypto.dll
unpack001/BurndownExt.dll
unpack001/Calendar.DayView.dll
unpack001/CalendarExt.dll
unpack001/CommandHandling.dll
unpack001/ConvertRTFToHTML.exe
unpack001/CustomComboBox.dll
unpack001/DayViewUIExtensionBridge.dll
unpack001/DayViewUIExtensionCore.dll
unpack001/EncryptDecrypt.dll
unpack001/EvidenceBoardUIExtensionBridge.dll
unpack001/EvidenceBoardUIExtensionCore.dll
unpack001/FMindImportExport.dll
unpack001/FtpStorage.dll
unpack001/GPExport.dll
unpack001/GanttChartExt.dll
unpack001/Gma.CodeCloud.Controls.dll
unpack001/HTMLContentControlBridge.dll
unpack001/HTMLContentControlCore.dll
unpack001/HTMLReportExporterBridge.dll
unpack001/HTMLReportExporterCore.dll
unpack001/HtmlAgilityPack.dll
unpack001/ImageHelper.dll
unpack001/KanbanBoard.dll
unpack001/LinkLabelEx.dll
unpack001/MDContentControlBridge.dll
unpack001/MDContentControlCore.dll
unpack001/MLOImport.dll
unpack001/MSDN.HtmlEditorControl.dll
unpack001/Markdig.dll
unpack001/Microsoft.VisualStudio.OLE.Interop.dll
unpack001/MindMapUIExtensionBridge.dll
unpack001/MindMapUIExtensionCore.dll
unpack001/MySpellCheck.dll
unpack001/PDFExporterBridge.dll
unpack001/PDFExporterCore.dll
unpack001/PlainTextImport.dll
unpack001/PluginHelpers.dll
unpack001/RTFContentCtrl.dll
unpack001/RadialTree.dll
unpack001/RichEditExtensions.dll
unpack001/ScrollHelper.dll
unpack001/SpreadsheetContentControlBridge.dll
unpack001/SpreadsheetContentControlCore.dll
unpack001/TDLTransEdit.exe
unpack001/TDLUninstall.exe
unpack001/TDLUpdate.exe
unpack001/ToDoList.exe
unpack001/ToolStripToolTip.dll
unpack001/TransText.dll
unpack001/TreeViewHelper.dll
unpack001/UIComponents.dll
unpack001/WebBrowserEx.dll
unpack001/WordCloudUIExtensionBridge.dll
unpack001/WordCloudUIExtensionCore.dll
unpack001/WorkloadExt.dll
unpack001/iCalImportExport.dll
unpack001/iTextSharp.dll
unpack001/unvell.ReoGrid.dll
unpack001/unvell.ReoGridEditorControl.dll

Files

todolist_exe.zip
.zip

Password: infected
BouncyCastle.Crypto.dll
.dll windows:4 windows x86 arch:x86

Password: infected

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mscoree

_CorDllMain

Sections

.text
Size: 2.4MB - Virtual size: 2.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
BurndownExt.dll
.dll windows:4 windows x86 arch:x86

Password: infected

4479eb21b633e560219120830cd849ea

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mfc42u

ord5283
ord4829
ord4419
ord2293
ord2294
ord4848
ord4294
ord2371
ord4370
ord5276
ord937
ord933
ord3568
ord3592
ord3397
ord3716
ord795
ord641
ord324
ord3621
ord2406
ord4229
ord4803
ord5945
ord2078
ord6237
ord6871
ord6617
ord4704
ord6330
ord3566
ord2746
ord5871
ord4470
ord2634
ord5949
ord3875
ord3420
ord3688
ord818
ord755
ord470
ord2854
ord2444
ord3494
ord2507
ord355
ord3687
ord5180
ord816
ord665
ord354
ord562
ord3614
ord4128
ord4292
ord5784
ord6166
ord1257
ord1560
ord268
ord4272
ord5568
ord2910
ord1263
ord1229
ord2966
ord5755
ord6188
ord5752
ord6182
ord4324
ord6185
ord6168
ord5869
ord5785
ord5790
ord5674
ord5732
ord5575
ord5567
ord6057
ord5860
ord3591
ord6017
ord6190
ord2559
ord3133
ord5977
ord939
ord935
ord3049
ord836
ord6664
ord834
ord5929
ord3050
ord940
ord941
ord922
ord926
ord2606
ord6868
ord929
ord919
ord942
ord4124
ord2755
ord2756
ord6920
ord6279
ord6278
ord6921
ord6919
ord6654
ord6655
ord924
ord859
ord925
ord927
ord4199
ord4197
ord2822
ord913
ord4184
ord4282
ord2114
ord472
ord6115
ord2855
ord5783
ord2745
ord2088
ord1143
ord4847
ord4215
ord2576
ord3649
ord809
ord5706
ord4155
ord3284
ord4158
ord807
ord554
ord556
ord2430
ord1637
ord860
ord6597
ord6195
ord6898
ord3296
ord3993
ord3991
ord2857
ord4118
ord4018
ord3288
ord4688
ord5142
ord4279
ord6211
ord4078
ord1794
ord2081
ord1197
ord3871
ord3084
ord1840
ord2574
ord3365
ord3635
ord693
ord4238
ord2706
ord6238
ord6896
ord1088
ord6754
ord3905
ord6451
ord6316
ord1792
ord4428
ord4369
ord4846
ord2505
ord293
ord5812
ord3740
ord5917
ord2442
ord3312
ord1173
ord1767
ord1930
ord3087
ord6193
ord3798
ord5858
ord6140
ord3867
ord768
ord489
ord1899
ord4253
ord4472
ord1808
ord700
ord398
ord5628
ord1761
ord2567
ord4390
ord3569
ord4042
ord5880
ord2916
ord2004
ord6266
ord2858
ord5867
ord6174
ord291
ord3290
ord6150
ord2522
ord4360
ord4051
ord5467
ord4116
ord2381
ord1703
ord1708
ord5230
ord6365
ord5275
ord5058
ord5244
ord2436
ord3725
ord559
ord812
ord2400
ord4263
ord6142
ord5080
ord6456
ord1126
ord4491
ord1932
ord4265
ord6375
ord2862
ord3016
ord4109
ord2805
ord2912
ord964
ord6313
ord4177
ord6388
ord5444
ord3313
ord6006
ord5774
ord2598
ord5188
ord3175
ord3178
ord3171
ord3506
ord3719
ord798
ord1989
ord2800
ord533
ord6381
ord3629
ord384
ord686
ord1635
ord2445
ord2914
ord2144
ord1821
ord3605
ord656
ord2572
ord4394
ord3625
ord682
ord397
ord699
ord3706
ord783
ord2104
ord2070
ord6124
ord3747
ord609
ord2423
ord5624
ord1644
ord2455
ord909
ord4180
ord394
ord696
ord3638
ord6607
ord4224
ord2053
ord6048
ord2506
ord4992
ord1863
ord5462
ord1115
ord1568
ord1570
ord1179
ord342
ord1240
ord1194
ord1563
ord1248
ord1250
ord1571
ord600
ord826
ord269
ord3737
ord4418
ord4621
ord4075
ord3074
ord3820
ord3826
ord3825
ord2971
ord3076
ord2980
ord3257
ord3131
ord4459
ord3254
ord3142
ord2977
ord2116
ord2438
ord5257
ord1720
ord3744
ord6372
ord2047
ord2640
ord4435
ord4831
ord3793
ord5286
ord4347
ord6370
ord5157
ord2377
ord5237
ord4401
ord4371
ord5261
ord4352
ord4942
ord4970
ord4736
ord4899
ord5154
ord5156
ord5155
ord4270
ord616
ord567
ord3577
ord5273
ord2570
ord4213
ord6874
ord2057
ord801
ord541
ord2810
ord6139
ord6136
ord5854
ord3792
ord4392
ord2015
ord2403
ord2372
ord3281
ord6003
ord537
ord5059
ord4396
ord3948
ord2859
ord561
ord815
ord3733
ord4616
ord3396
ord5710
ord5285
ord5303
ord4692
ord4074
ord2717
ord5298
ord5296
ord3341
ord2388
ord5193
ord1089
ord3917
ord5727
ord2504
ord2546
ord4480
ord6371
ord6466
ord1165
ord1662
ord2644
ord289
ord323
ord1633
ord1634
ord5781
ord640
ord613
ord341
ord654
ord3603
ord1768
ord4073
ord6051
ord6379
ord5436
ord3898
ord2099
ord2036
ord823
ord6390
ord5830
ord5446
ord2440
ord2836
ord861
ord540
ord858
ord3658
ord535
ord538
ord800
ord3805
ord4222
ord825

msvcrt

_CIfmod
_CxxThrowException
_wsplitpath
free
malloc
_wtoi
_wcsicmp
_wcsnicmp
wcsncmp
wcslen
_purecall
wcscmp
memset
wcsncpy
wcstod
fgetws
fgets
_mbschr
memcpy
qsort
__CxxFrameHandler
_ftol
_strdup
setlocale
_wtol
_wcsdup
wcschr
_wmakepath
??1type_info@@UAE@XZ
__dllonexit
_onexit
_initterm
_adjust_fdiv
_except_handler3
?terminate@@YAXXZ
memmove

kernel32

lstrcmpiW
GetCurrentThreadId
GetModuleFileNameW
ExpandEnvironmentStringsW
GetTempPathW
CreateDirectoryW
SetFileAttributesW
CloseHandle
DeleteFileW
GetModuleHandleW
GetVersionExW
GetFileAttributesW
lstrcpynW
GetACP
lstrcpyW
LCMapStringW
MultiByteToWideChar
WideCharToMultiByte
lstrlenW
GetTickCount
LocalFree
GetCurrentProcess
GetTimeFormatW
GetDateFormatW
GetLocaleInfoW
FileTimeToLocalFileTime
FileTimeToSystemTime
LoadLibraryW
GetProcAddress
FreeLibrary
GlobalLock
GlobalUnlock
GlobalAlloc
GlobalReAlloc
GlobalFree
MulDiv
LocalAlloc

user32

DeferWindowPos
CallWindowProcW
ClientToScreen
UnhookWindowsHookEx
SetWindowsHookExW
CallNextHookEx
GetClassInfoW
DefWindowProcW
LoadCursorW
UpdateWindow
OffsetRect
GetDlgCtrlID
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
GetDC
ReleaseDC
GetWindowRect
InflateRect
SetWindowLongW
GetParent
GetSystemMetrics
EnableWindow
IsWindowVisible
GetSysColor
GetClientRect
SendMessageW
InvalidateRect
RegisterWindowMessageW
GetMessagePos
GetSubMenu
SetMenuDefaultItem
EndDeferWindowPos
SetParent
ScreenToClient
GetNextDlgTabItem
IsChild
GetWindow
ShowScrollBar
SetWindowPos
EqualRect
LoadMenuW
PostMessageW
DestroyIcon
LoadBitmapW
GetDesktopWindow
DrawIconEx
GetIconInfo
GetWindowLongW
GetMonitorInfoW
BeginDeferWindowPos
SetRect
CopyIcon
GetScrollPos
MapDialogRect
MonitorFromWindow
MonitorFromRect
MonitorFromPoint
WindowFromDC
IntersectRect
IsWindow
IsRectEmpty
DrawTextA
GetTabbedTextExtentW
SetCursor
LoadImageW
CopyRect
MapVirtualKeyW
GetKeyNameTextW
RegisterClipboardFormatW
SetTimer
GetLastActivePopup
GetForegroundWindow
SystemParametersInfoW
KillTimer
GetClassNameW
GetWindowDC
GetMenuItemCount
RedrawWindow
GetMenuItemID
GetClipboardData
GrayStringW
DrawTextW
TabbedTextOutW
GetKeyState
ReleaseCapture
SetCapture
PtInRect
DrawFrameControl
DrawFocusRect
SetRectEmpty
GetFocus

gdi32

DeleteObject
CreateFontIndirectW
GetTextMetricsW
RoundRect
Escape
Polyline
SetDIBits
ExtTextOutW
TextOutW
RectVisible
PtVisible
Polygon
SelectObject
Rectangle
GetStockObject
GetObjectW
SelectPalette
RealizePalette
GetDIBits
GetTextExtentPoint32W
CreatePen
CreateFontW
GetSystemPaletteEntries
CreatePalette
BitBlt
GetDeviceCaps
CreateSolidBrush
CreateCompatibleBitmap
CreateCompatibleDC

advapi32

RegQueryValueExW
GetTokenInformation
OpenProcessToken
RegCreateKeyExW
RegOpenKeyExW
RegCloseKey

shell32

SHGetSpecialFolderPathW

comctl32

ImageList_Draw
_TrackMouseEvent
ImageList_GetIcon
ImageList_GetImageCount
ImageList_GetIconSize
ImageList_AddMasked
ImageList_ReplaceIcon

olepro32

ord252

msimg32

GradientFill

shlwapi

PathCanonicalizeW

Exports

Exports

CreateUIExtensionInterface
GetInterfaceVersion

Sections

.text
Size: 240KB - Virtual size: 237KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 60KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 40KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Calendar.DayView.dll
.dll windows:4 windows x86 arch:x86

Password: infected

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\_code\ToDoList_8.3\Plugins\3rdParty\DayView\obj\Release\Calendar.DayView.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 50KB - Virtual size: 50KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 936B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
CalendarExt.dll
.dll windows:4 windows x86 arch:x86

Password: infected

42c183bac8ef9a37defa03d7ae8fce2b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mfc42u

ord4118
ord3566
ord5977
ord6597
ord2371
ord5871
ord4470
ord2746
ord6211
ord4294
ord832
ord5929
ord2810
ord5142
ord3434
ord937
ord933
ord935
ord541
ord801
ord2057
ord3983
ord6139
ord535
ord3898
ord2836
ord2440
ord5830
ord2036
ord2099
ord3614
ord3737
ord3706
ord783
ord700
ord398
ord913
ord5590
ord2372
ord2559
ord613
ord922
ord925
ord927
ord5785
ord289
ord2806
ord3049
ord4018
ord6124
ord2104
ord3749
ord3747
ord1165
ord836
ord3016
ord4215
ord2576
ord3649
ord2430
ord6266
ord2858
ord1637
ord4282
ord2114
ord4184
ord2855
ord6193
ord640
ord5781
ord1633
ord323
ord6871
ord4847
ord809
ord6279
ord6278
ord6868
ord5706
ord2755
ord4155
ord3284
ord4158
ord807
ord554
ord556
ord1172
ord2567
ord4390
ord3569
ord2070
ord768
ord489
ord1899
ord4253
ord6451
ord818
ord4472
ord324
ord5628
ord3792
ord1761
ord4078
ord3084
ord1173
ord2362
ord2350
ord1930
ord3312
ord3133
ord2854
ord3798
ord6874
ord537
ord5858
ord6140
ord941
ord3867
ord4279
ord2706
ord6655
ord2822
ord5568
ord2910
ord940
ord4124
ord4272
ord2756
ord6920
ord6921
ord6919
ord4273
ord2776
ord6654
ord924
ord859
ord5854
ord4199
ord4197
ord3688
ord5783
ord4128
ord4292
ord5784
ord2745
ord2444
ord2088
ord4270
ord4042
ord5880
ord2916
ord2004
ord1088
ord5867
ord6174
ord291
ord3290
ord6150
ord2522
ord4360
ord4051
ord5467
ord4116
ord2381
ord1703
ord1708
ord5230
ord6048
ord5275
ord5058
ord5244
ord2436
ord3725
ord559
ord812
ord2400
ord4263
ord2857
ord6142
ord5080
ord6456
ord1126
ord4491
ord860
ord939
ord920
ord5210
ord6664
ord834
ord3875
ord3420
ord1634
ord926
ord3051
ord929
ord919
ord3222
ord3403
ord3753
ord1932
ord4265
ord6375
ord2862
ord4109
ord2966
ord5755
ord6188
ord5752
ord6182
ord4324
ord6185
ord6017
ord6168
ord5869
ord5790
ord5674
ord5732
ord5575
ord5567
ord6057
ord5860
ord3591
ord755
ord6190
ord470
ord609
ord2423
ord1794
ord2442
ord397
ord699
ord3629
ord384
ord686
ord1635
ord2445
ord5624
ord1644
ord2455
ord909
ord4180
ord394
ord696
ord3638
ord4224
ord3716
ord772
ord795
ord6138
ord500
ord5856
ord6126
ord6125
ord5930
ord472
ord5647
ord3126
ord3648
ord350
ord2235
ord1186
ord2558
ord4504
ord5047
ord2144
ord1230
ord1863
ord1568
ord1570
ord1179
ord342
ord1240
ord1194
ord1563
ord1248
ord1250
ord1571
ord600
ord826
ord269
ord2506
ord4992
ord4848
ord4371
ord5261
ord4352
ord4942
ord4970
ord4736
ord4899
ord5154
ord5156
ord5155
ord1143
ord3948
ord823
ord2859
ord825
ord561
ord815
ord3733
ord4418
ord4616
ord4075
ord3074
ord3820
ord3826
ord3825
ord3396
ord2971
ord3076
ord2980
ord3257
ord3131
ord4459
ord3254
ord3142
ord2977
ord5710
ord5285
ord5303
ord4692
ord4074
ord2717
ord5298
ord5296
ord3341
ord2388
ord5193
ord1089
ord4704
ord3087
ord6617
ord3805
ord2078
ord5945
ord942
ord4803
ord4229
ord2406
ord3621
ord326
ord641
ord3568
ord1808
ord3603
ord5812
ord6379
ord5436
ord6390
ord5446
ord5276
ord4370
ord2606
ord858
ord861
ord538
ord6136
ord2053
ord3658
ord2634
ord3871
ord6195
ord6330
ord2293
ord2294
ord654
ord540
ord567
ord341
ord800
ord616
ord3577
ord4621
ord3397
ord5273
ord2116
ord2438
ord5257
ord1720
ord5059
ord3744
ord6372
ord2047
ord2640
ord4435
ord4831
ord3793
ord5286
ord4347
ord6370
ord5157
ord2377
ord5237
ord4392
ord1768
ord4073
ord6051
ord2570
ord4213
ord2015
ord2403
ord4419
ord4829
ord5283
ord4401
ord3050
ord1767
ord3917
ord5727
ord2504
ord2546
ord4480
ord6371
ord6365
ord6466
ord1115

msvcrt

_ftol
_wcsicmp
abs
fabs
memmove
qsort
__RTDynamicCast
memset
memcpy
wcscmp
__CxxFrameHandler
_purecall
wcstoul
wcstod
setlocale
_wtoi
wcsncpy
_wcsnicmp
wcslen
time
free
_strdup
swscanf
_wcsdup
wcschr
_wsplitpath
_wmakepath
wcsstr
malloc
_CxxThrowException
__dllonexit
_onexit
??1type_info@@UAE@XZ
_initterm
_adjust_fdiv
_except_handler3
?terminate@@YAXXZ
_wtol

kernel32

lstrcatW
WinExec
LocalAlloc
GetVersionExW
GetWindowsDirectoryW
GetModuleHandleW
GetModuleFileNameW
GetTimeFormatW
GetDateFormatW
FileTimeToLocalFileTime
FileTimeToSystemTime
SystemTimeToFileTime
LocalFileTimeToFileTime
GetFileAttributesW
lstrcpynW
GetACP
MulDiv
LCMapStringW
WideCharToMultiByte
GetLocaleInfoW
LocalFree
lstrlenW
lstrcpyW
LoadLibraryW
GetProcAddress
FreeLibrary

user32

RegisterClipboardFormatW
CopyIcon
SetRect
MapDialogRect
FillRect
ShowScrollBar
GetScrollPos
BeginDeferWindowPos
EndDeferWindowPos
SetWindowPos
DeferWindowPos
MonitorFromRect
CallWindowProcW
DestroyCursor
GetCursorPos
GetFocus
GetClientRect
SetWindowLongW
GetParent
EnableWindow
SendMessageW
LoadIconW
RegisterWindowMessageW
MonitorFromPoint
WindowFromDC
DrawTextA
LoadImageW
CopyRect
GetKeyState
GetKeyNameTextW
SystemParametersInfoW
DrawTextW
IsWindow
GetDC
ReleaseDC
GetNextDlgTabItem
IsChild
MapVirtualKeyW
GetWindow
GetWindowLongW
PostMessageW
DestroyIcon
GetWindowRect
LockWindowUpdate
GrayStringW
TabbedTextOutW
LoadMenuW
GetSubMenu
GetCaretPos
ClientToScreen
ReleaseCapture
LoadCursorW
SetCursor
DragDetect
SetCapture
UpdateWindow
SetRectEmpty
IntersectRect
SetScrollPos
GetLastActivePopup
GetForegroundWindow
KillTimer
SetTimer
DrawFrameControl
GetClassNameW
GetWindowDC
GetSystemMetrics
IsWindowVisible
GetMenuItemCount
GetMenuItemID
GetDlgCtrlID
SetMenuDefaultItem
RedrawWindow
OffsetRect
IsRectEmpty
SetParent
LoadBitmapW
GetDesktopWindow
DrawIconEx
GetIconInfo
GetMonitorInfoW
MonitorFromWindow
GetSysColor
GetMessagePos
InflateRect
InvalidateRect
ScreenToClient
DrawFocusRect
PtInRect

gdi32

Escape
SetTextColor
SetBkMode
SetDIBits
LineTo
TextOutW
SetBkColor
GetCurrentObject
SetTextJustification
RectVisible
PtVisible
BitBlt
DeleteDC
GetDIBits
CreatePen
RoundRect
GetDeviceCaps
GetObjectW
CreateFontIndirectW
RestoreDC
SaveDC
SelectObject
GetTextMetricsW
GetStockObject
DeleteObject
CreateCompatibleDC
CreateCompatibleBitmap
ExtTextOutW
MoveToEx
CreateSolidBrush
GetTextExtentPoint32W

advapi32

RegQueryValueExW
RegCreateKeyExW
RegOpenKeyExW
RegCloseKey
RegQueryValueW

shell32

ShellExecuteW

comctl32

ImageList_AddMasked
ImageList_GetIcon
ImageList_GetImageCount
ImageList_GetIconSize
ImageList_Draw
ImageList_ReplaceIcon

olepro32

ord252

msimg32

GradientFill

shlwapi

PathCanonicalizeW

Exports

Exports

CreateUIExtensionInterface
GetInterfaceVersion

Sections

.text
Size: 220KB - Virtual size: 217KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 36KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
CommandHandling.dll
.dll windows:4 windows x86 arch:x86

Password: infected

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\_code\ToDoList_8.3\Plugins\3rdParty\CommandHandling\obj\Release\CommandHandling.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 964B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ConvertRTFToHTML.exe
.exe windows:4 windows x86 arch:x86

Password: infected

4acdaa8fd04b327d94b1ea36f2c7ebc8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mfc42u

ord6168
ord5871
ord2372
ord5785
ord2855
ord3871
ord2859
ord6279
ord6278
ord6865
ord3792
ord2088
ord3084
ord6195
ord5977
ord3494
ord6597
ord464
ord857
ord5571
ord5679
ord2133
ord2456
ord434
ord433
ord465
ord2385
ord1649
ord5604
ord925
ord6867
ord5568
ord2910
ord941
ord942
ord940
ord5852
ord2912
ord2800
ord964
ord6313
ord4177
ord6388
ord5444
ord3313
ord6006
ord5774
ord2598
ord5188
ord3178
ord3506
ord3719
ord1989
ord3175
ord3171
ord798
ord5706
ord926
ord4197
ord2806
ord3805
ord6921
ord668
ord3306
ord2773
ord2762
ord356
ord3176
ord4053
ord5857
ord6773
ord665
ord354
ord3319
ord2822
ord2805
ord5180
ord533
ord1971
ord6381
ord3785
ord5438
ord654
ord341
ord5854
ord6136
ord3976
ord6918
ord6919
ord3211
ord4037
ord4199
ord6640
ord6920
ord2776
ord924
ord859
ord3982
ord711
ord413
ord5590
ord913
ord3434
ord4184
ord536
ord6193
ord5286
ord2400
ord6451
ord4282
ord2114
ord6871
ord816
ord562
ord3566
ord3621
ord640
ord2406
ord2745
ord5781
ord1634
ord1633
ord323
ord6166
ord1821
ord3397
ord3605
ord656
ord567
ord4270
ord5506
ord1640
ord429
ord3443
ord1657
ord2444
ord613
ord289
ord1826
ord5061
ord4629
ord4601
ord4710
ord4744
ord4602
ord5010
ord4369
ord4846
ord2507
ord4828
ord355
ord4224
ord3447
ord1808
ord5228
ord5264
ord860
ord4155
ord4073
ord1932
ord809
ord556
ord4265
ord6375
ord2862
ord3016
ord4118
ord2966
ord5755
ord6188
ord5752
ord6182
ord4324
ord6185
ord6017
ord5869
ord5790
ord5674
ord5732
ord5575
ord5567
ord6057
ord5860
ord3591
ord6190
ord3629
ord1635
ord2445
ord2746
ord3568
ord3688
ord5783
ord4128
ord4292
ord5784
ord1172
ord3614
ord6607
ord397
ord699
ord1795
ord1809
ord1920
ord1857
ord1856
ord1850
ord1851
ord1937
ord4078
ord1834
ord1789
ord4183
ord912
ord1899
ord1829
ord1792
ord1831
ord1890
ord1897
ord2559
ord6770
ord812
ord6140
ord559
ord5624
ord1644
ord2455
ord909
ord1173
ord4180
ord394
ord696
ord3638
ord1243
ord5268
ord5267
ord2350
ord319
ord2351
ord2331
ord2290
ord2332
ord2291
ord2333
ord2292
ord1930
ord3312
ord2072
ord3133
ord4294
ord2854
ord3798
ord5858
ord5606
ord6211
ord4279
ord2706
ord3491
ord836
ord5815
ord3642
ord700
ord398
ord5929
ord2057
ord935
ord933
ord920
ord837
ord930
ord838
ord5599
ord929
ord5628
ord1569
ord6048
ord3867
ord384
ord686
ord4667
ord1768
ord6051
ord537
ord539
ord6139
ord6874
ord6390
ord5830
ord6433
ord6437
ord6238
ord1761
ord329
ord5978
ord1177
ord2443
ord2139
ord5945
ord643
ord1561
ord5714
ord325
ord3753
ord3403
ord3222
ord919
ord3051
ord832
ord3050
ord3420
ord3875
ord834
ord6664
ord5210
ord3049
ord937
ord939
ord4283
ord4280
ord1137
ord353
ord1863
ord547
ord6489
ord5462
ord2914
ord532
ord4028
ord4992
ord4370
ord5261
ord3948
ord1143
ord1131
ord6113
ord2506
ord641
ord815
ord825
ord561
ord3733
ord4418
ord4616
ord6379
ord5436
ord5446
ord3898
ord823
ord2099
ord2036
ord861
ord2756
ord6654
ord6655
ord4273
ord4272
ord4124
ord922
ord541
ord2755
ord927
ord6868
ord2440
ord6330
ord6399
ord6398
ord1197
ord1662
ord535
ord2810
ord2606
ord4847
ord2644
ord801
ord2836
ord3658
ord470
ord755
ord2371
ord4704
ord3087
ord2634
ord4229
ord2294
ord2362
ord2293
ord324
ord540
ord1165
ord3517
ord858
ord3516
ord3592
ord4419
ord4621
ord5273
ord2116
ord2438
ord5257
ord1720
ord5059
ord3744
ord6372
ord2047
ord2640
ord4435
ord4831
ord3793
ord5276
ord4347
ord6370
ord5157
ord2377
ord5237
ord4401
ord4109
ord1767
ord4075
ord3074
ord3820
ord3826
ord3825
ord2971
ord3076
ord2980
ord3257
ord3131
ord4459
ord3254
ord3142
ord2977
ord5710
ord5285
ord5303
ord4692
ord4074
ord2717
ord5298
ord5296
ord3341
ord2388
ord5193
ord1089
ord3917
ord5727
ord2504
ord2546
ord4480
ord6371
ord4269
ord800
ord538
ord432

msvcrt

_wcsicmp
wcscmp
_ftol
_wcsnicmp
_wtoi
strncmp
free
malloc
realloc
_wtol
wcstol
wcsstr
floor
_wcsicoll
_mbschr
fgets
fgetws
calloc
_CxxThrowException
iswspace
iswalnum
wcslen
iswdigit
_wutime
wcschr
isdigit
_wsplitpath
_wmakepath
wcsncpy
__CxxFrameHandler
rand
srand
time
wcstod
_strdup
setlocale
towupper
towlower
iswupper
iswlower
qsort
wcsspn
_purecall
_wcsdup
wprintf
_chdrive
_getdrive
toupper
swscanf
isspace
isalnum
wcstoul
swprintf
ceil
_CIpow
localtime
_exit
_XcptFilter
exit
wcsncmp
_initterm
_wcmdln
__wgetmainargs
memmove
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
__dllonexit
_onexit
??1type_info@@UAE@XZ
?terminate@@YAXXZ
_controlfp

kernel32

lstrcmpiW
GetProcessHeap
HeapAlloc
HeapFree
GetACP
GetDriveTypeW
GetVolumeInformationW
GetDiskFreeSpaceW
GetVersionExW
lstrcpynW
GetVersion
MulDiv
LockResource
GetNumberFormatW
GetCurrencyFormatW
LCMapStringW
MultiByteToWideChar
WideCharToMultiByte
GetLocaleInfoW
GetComputerNameW
GlobalAlloc
GlobalFree
FormatMessageW
LocalAlloc
LocalFree
GlobalLock
GlobalUnlock
LoadLibraryExW
GetSystemDirectoryW
GetWindowsDirectoryW
lstrcmpW
GetModuleHandleW
GetCurrentProcess
OpenProcess
GetModuleFileNameW
FindResourceW
SizeofResource
LoadResource
CreateProcessW
ExpandEnvironmentStringsW
GetTempFileNameW
GetTempPathW
MoveFileW
CopyFileW
CreateDirectoryW
GetCurrentDirectoryW
GetFileAttributesW
WaitForSingleObject
FindFirstFileW
FindNextFileW
FindClose
GetLongPathNameW
SetFileAttributesW
FileTimeToLocalFileTime
FileTimeToSystemTime
CreateFileW
SetFileTime
CloseHandle
MoveFileExW
InterlockedDecrement
GetTickCount
SetEndOfFile
GetFileSize
GetLastError
lstrcpyW
lstrcpyA
LoadLibraryW
GetProcAddress
RemoveDirectoryW
lstrlenW
DeleteFileW
SetCurrentDirectoryW
lstrlenA
InterlockedIncrement
GetUserDefaultLangID
FreeLibrary
GlobalSize
SetLastError
GlobalReAlloc
LocalFileTimeToFileTime
SystemTimeToFileTime
GetDateFormatW
GetTimeFormatW
GetStartupInfoW

user32

EnumClipboardFormats
TranslateMessage
IsDialogMessageW
DispatchMessageW
PeekMessageW
GetClipboardData
CloseDesktop
SystemParametersInfoW
RegisterWindowMessageW
GetSystemMetrics
LoadIconW
EnableWindow
SendMessageW
DrawIcon
GetClientRect
IsIconic
RegisterClipboardFormatW
DestroyIcon
GetSysColor
FillRect
GetFocus
OffsetRect
wvsprintfW
EmptyClipboard
SetClipboardData
CloseClipboard
wsprintfW
GetLastInputInfo
GetWindowThreadProcessId
GetSysColorBrush
GetParent
DrawIconEx
InvalidateRect
PtInRect
CharLowerBuffW
OpenClipboard
GetDC
WindowFromPoint
ChildWindowFromPoint
MessageBoxW
GetNextDlgTabItem
IsChild
IsWindowVisible
EqualRect
GetDlgItem
GetWindowTextW
SetWindowLongW
PostMessageW
CallWindowProcW
MapDialogRect
DrawFrameControl
GetClassNameW
GetIconInfo
GetMonitorInfoW
MonitorFromWindow
MonitorFromRect
MonitorFromPoint
SetRectEmpty
WindowFromDC
IntersectRect
DrawTextA
GetTabbedTextExtentW
SetCursor
LoadCursorW
CopyRect
InflateRect
LoadBitmapW
GrayStringW
TabbedTextOutW
SetTimer
GetWindowLongW
GetWindow
GetLastActivePopup
GetForegroundWindow
GetDlgCtrlID
KillTimer
ScreenToClient
DrawTextW
ReleaseDC
GetDesktopWindow
LoadImageW
GetClipboardFormatNameW
IsClipboardFormatAvailable
IsWindow
RedrawWindow
IsRectEmpty
TrackPopupMenuEx
GetMessagePos
GetWindowRect
ClientToScreen
ReleaseCapture
SetCapture
CopyIcon
GetKeyState
MapVirtualKeyW
GetKeyNameTextW
SetFocus
IsWindowEnabled
MoveWindow
SetActiveWindow
GetActiveWindow
UpdateWindow
CreateWindowExW
SetRect
GetKeyboardLayout
OpenInputDesktop

gdi32

DeleteDC
CreateDIBSection
GetBkColor
CreatePen
CreateSolidBrush
RoundRect
GetTextMetricsW
CreateFontIndirectW
RestoreDC
SaveDC
Escape
TextOutW
RectVisible
PtVisible
SetDIBits
GetDIBits
GetObjectW
DeleteObject
GetStockObject
ExtTextOutW
CreateCompatibleDC
CreateCompatibleBitmap
BitBlt
GetDeviceCaps
SelectObject
CopyMetaFileW
GetDIBColorTable
GetTextExtentPoint32W

advapi32

RegEnumValueW
OpenProcessToken
GetUserNameW
RegCreateKeyExW
RegOpenKeyExW
RegDeleteKeyW
RegCloseKey
RegEnumKeyExW
RegSetValueExW
RegEnumKeyW
GetTokenInformation
RegQueryValueExW
RegDeleteValueW

shell32

SHGetFileInfoW
ExtractIconExW
SHChangeNotify
SHBrowseForFolderW
ShellExecuteW
DragQueryFileW
SHGetSpecialFolderPathW
StrStrW
SHGetMalloc
SHGetPathFromIDListW

comctl32

InitCommonControlsEx
ImageList_Draw
ImageList_ReplaceIcon
ImageList_GetImageCount
ImageList_Remove
ImageList_GetIcon
ImageList_AddMasked
ImageList_GetIconSize
_TrackMouseEvent

ole32

CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
OleRun
CreateStreamOnHGlobal
CoInitialize
CoUninitialize
OleCreateLinkToFile
OleCreateFromFile
OleSetContainedObject
CoCreateInstance

olepro32

ord251
ord252

oleaut32

OleLoadPicturePath
SysStringLen
SysStringByteLen
SysAllocStringByteLen
GetErrorInfo
SetErrorInfo
VariantChangeType
CreateErrorInfo
VariantInit
SysAllocStringLen
SysAllocString
SysFreeString
VariantClear

urlmon

URLDownloadToFileW

shlwapi

PathRelativePathToW
UrlCreateFromPathW
PathCanonicalizeW
PathIsRelativeW
PathIsURLW
PathCreateFromUrlW

wininet

DeleteUrlCacheEntry
InternetQueryOptionW

rpcrt4

UuidFromStringW
RpcStringFreeW
UuidCreate
UuidToStringW

msimg32

GradientFill

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

Sections

.text
Size: 772KB - Virtual size: 770KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 116KB - Virtual size: 115KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 72KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
CustomComboBox.dll
.dll windows:4 windows x86 arch:x86

Password: infected

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\_code\ToDoList_8.3\Plugins\3rdParty\CustomComboBox\obj\Release\CustomComboBox.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 936B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
DayViewUIExtensionBridge.dll
.dll windows:6 windows x86 arch:x86

Password: infected

d59cb0807befe220603cdb116418961f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\_code\ToDoList_8.3\Plugins\Release\DayViewUIExtensionBridge.pdb

Imports

vcruntime140

__FrameUnwindFilter
_except_handler4_common
memset
__std_type_info_destroy_list
_CxxThrowException
__std_exception_destroy
__std_exception_copy

api-ms-win-crt-runtime-l1-1-0

_cexit
_crt_atexit
_execute_onexit_table
_register_onexit_function
terminate
_initialize_narrow_environment
_configure_narrow_argv
_seh_filter_dll
_initterm_e
_initterm
abort
_initialize_onexit_table

api-ms-win-crt-heap-l1-1-0

_callnewh
free
malloc

kernel32

InitializeSListHead
IsProcessorFeaturePresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
IsDebuggerPresent
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
GetCurrentProcess
TerminateProcess
LoadLibraryW
Sleep

user32

RegisterWindowMessageW
MoveWindow
SetWindowLongW
SetParent
LoadImageW

mscoree

_CorDllMain

Exports

Exports

CreateUIExtensionInterface
GetInterfaceVersion

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 512B - Virtual size: 60B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 716B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
DayViewUIExtensionCore.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\_code\ToDoList_8.3\Plugins\UIExension\DayViewUIExtension\DayViewUIExtensionCore\obj\Release\DayViewUIExtensionCore.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 108KB - Virtual size: 107KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
EncryptDecrypt.dll
.dll windows:4 windows x86 arch:x86

b519c8b33d3198f8917dcb361112bf3d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcrt

_adjust_fdiv
malloc
_initterm
free
??1type_info@@UAE@XZ
rand
memcmp
??2@YAPAXI@Z
strlen
memcpy
??3@YAXPAX@Z
__CxxFrameHandler
memset
_purecall

kernel32

GetCurrentProcess
GetTickCount
QueryPerformanceCounter
GetLocalTime
GlobalMemoryStatus
GetCurrentProcessId
GetCurrentThreadId
GetCurrentThread
GetProcessHeap
GetSystemInfo
GetStartupInfoW

user32

GetOpenClipboardWindow
GetMessageTime
GetMessagePos
GetInputState
GetForegroundWindow
GetFocus
GetDesktopWindow
GetClipboardViewer
GetClipboardOwner
GetCapture
GetActiveWindow
GetCaretPos
GetCursorPos

Exports

Exports

CreateEncryptionInterface

Sections

.text
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 822B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
EvidenceBoardUIExtensionBridge.dll
.dll windows:6 windows x86 arch:x86

20ebf8492161cdd29f7605670267db96

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\_code\ToDoList_8.3\Plugins\Release\EvidenceBoardUIExtensionBridge.pdb

Imports

vcruntime140

_except_handler4_common
memset
__std_type_info_destroy_list
_CxxThrowException
__std_exception_destroy
__std_exception_copy
__FrameUnwindFilter

api-ms-win-crt-runtime-l1-1-0

_cexit
_crt_atexit
_execute_onexit_table
_register_onexit_function
terminate
_initialize_narrow_environment
_configure_narrow_argv
_seh_filter_dll
_initterm_e
_initterm
abort
_initialize_onexit_table

api-ms-win-crt-heap-l1-1-0

_callnewh
free
malloc

kernel32

InitializeSListHead
IsProcessorFeaturePresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
IsDebuggerPresent
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
TerminateProcess
LoadLibraryW
Sleep
GetCurrentProcess

user32

RegisterWindowMessageW
DestroyWindow
LoadImageW
MoveWindow
SetWindowLongW
SetParent

mscoree

_CorDllMain

Exports

Exports

CreateUIExtensionInterface
GetInterfaceVersion

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 512B - Virtual size: 60B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 712B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
EvidenceBoardUIExtensionCore.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\_code\ToDoList_8.3\Plugins\UIExension\EvidenceBoardUIExtension\EvidenceBoardUIExtensionCore\obj\x86\Release\EvidenceBoardUIExtensionCore.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 132KB - Virtual size: 132KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
FMindImportExport.dll
.dll windows:4 windows x86 arch:x86

83a9bc035f76595a3efa233b95355148

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mfc42u

ord2822
ord2805
ord533
ord6381
ord6919
ord927
ord2776
ord924
ord859
ord4199
ord5210
ord6664
ord5929
ord1165
ord354
ord2914
ord5462
ord1863
ord665
ord2910
ord5568
ord5857
ord6874
ord925
ord6921
ord3805
ord6278
ord2755
ord6390
ord6379
ord5436
ord5446
ord926
ord6655
ord5706
ord922
ord798
ord3171
ord3175
ord1989
ord3719
ord3506
ord3178
ord5188
ord2598
ord269
ord826
ord600
ord1571
ord1250
ord1248
ord1563
ord1194
ord5774
ord6006
ord3313
ord5444
ord6388
ord4177
ord6313
ord964
ord2800
ord2912
ord5852
ord2606
ord2099
ord2836
ord6654
ord4273
ord942
ord3658
ord6466
ord823
ord815
ord561
ord3733
ord4418
ord4616
ord4075
ord3074
ord3820
ord3826
ord3825
ord3396
ord2971
ord3076
ord2980
ord3257
ord3131
ord4459
ord3254
ord3142
ord2977
ord3948
ord5710
ord5285
ord5303
ord4692
ord4074
ord2717
ord5298
ord5296
ord3341
ord2388
ord5193
ord1089
ord3917
ord5727
ord2504
ord2546
ord4480
ord6371
ord6139
ord537
ord4124
ord941
ord6279
ord861
ord541
ord801
ord3983
ord2810
ord940
ord540
ord6868
ord2756
ord4272
ord858
ord535
ord538
ord800
ord1115
ord1173
ord1568
ord1570
ord1179
ord342
ord1240
ord825

msvcrt

__dllonexit
_initterm
malloc
_adjust_fdiv
??1type_info@@UAE@XZ
_onexit
_mbschr
fgets
fgetws
_CxxThrowException
swscanf
setlocale
_strdup
wcstod
free
wcslen
wcsncpy
_wmakepath
_wsplitpath
wcschr
iswdigit
_wcsicmp
_wtoi
wcstoul
_wtol
wcscmp
__CxxFrameHandler
_purecall

kernel32

GetCurrentProcess
lstrcpyW
GetModuleFileNameW
ExpandEnvironmentStringsW
GetTempPathW
CreateDirectoryW
GetFileAttributesW
GetProcAddress
SetFileAttributesW
CloseHandle
DeleteFileW
InterlockedDecrement
GetTickCount
SetEndOfFile
GetFileSize
GetLastError
lstrlenW
LoadLibraryW
LocalFree
GetLocaleInfoW
WideCharToMultiByte
MultiByteToWideChar
LCMapStringW
LocalFileTimeToFileTime
SystemTimeToFileTime
MulDiv
GetACP
LocalAlloc
InterlockedIncrement
lstrlenA

user32

LoadImageW
GetDC
ReleaseDC
DestroyIcon
RegisterClipboardFormatW

gdi32

GetDeviceCaps

advapi32

GetTokenInformation
OpenProcessToken

shell32

SHGetSpecialFolderPathW

ole32

CoCreateInstance
OleRun

oleaut32

GetErrorInfo
SysAllocStringLen
SysStringByteLen
SysAllocStringByteLen
VariantClear
SysAllocString
SysFreeString

shlwapi

PathCanonicalizeW

Exports

Exports

CreateExportInterface
CreateImportInterface
GetInterfaceVersion

Sections

.text
Size: 68KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
FtpStorage.dll
.dll windows:4 windows x86 arch:x86

56680595901a0316a02968ff906e6897

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mfc42u

ord859
ord6868
ord4199
ord913
ord4184
ord3805
ord926
ord3306
ord2805
ord2912
ord964
ord6313
ord4177
ord6388
ord5444
ord6006
ord5774
ord2598
ord5188
ord3175
ord3178
ord3171
ord3506
ord3719
ord798
ord1989
ord2800
ord533
ord5261
ord4992
ord6048
ord1767
ord4401
ord4419
ord2403
ord2015
ord4213
ord2570
ord6051
ord4073
ord1768
ord4392
ord5237
ord2377
ord5157
ord6370
ord4347
ord5286
ord3793
ord4831
ord4435
ord2640
ord2047
ord6372
ord3744
ord5059
ord1720
ord5257
ord2438
ord2116
ord5273
ord3397
ord4621
ord3577
ord567
ord2293
ord2294
ord2291
ord3087
ord6330
ord5977
ord3312
ord2036
ord2099
ord2836
ord2440
ord5830
ord2371
ord4229
ord4370
ord4847
ord5276
ord4215
ord2576
ord3649
ord809
ord2114
ord6617
ord807
ord554
ord556
ord2430
ord1637
ord1143
ord325
ord4294
ord4704
ord2746
ord1634
ord2406
ord3898
ord613
ord5785
ord2855
ord289
ord2859
ord5871
ord3621
ord2745
ord3566
ord2444
ord5781
ord640
ord1633
ord323
ord2088
ord3614
ord398
ord700
ord1808
ord3792
ord5228
ord6193
ord5714
ord1561
ord5264
ord643
ord5945
ord2139
ord2443
ord1177
ord5978
ord329
ord1761
ord6451
ord6211
ord6871
ord6238
ord2862
ord3693
ord2574
ord4396
ord3365
ord3635
ord693
ord1172
ord5949
ord2637
ord4279
ord3012
ord5867
ord3296
ord5918
ord6896
ord3173
ord6898
ord833
ord836
ord3993
ord3281
ord6266
ord6597
ord4369
ord4846
ord324
ord924
ord860
ord4118
ord536
ord1243
ord5268
ord1173
ord2362
ord4078
ord1930
ord4282
ord3084
ord3871
ord3867
ord2914
ord2559
ord3629
ord384
ord686
ord1635
ord2445
ord2400
ord397
ord699
ord1826
ord6433
ord3706
ord783
ord4270
ord755
ord470
ord2104
ord6168
ord2372
ord6865
ord6607
ord5624
ord1644
ord2455
ord909
ord4180
ord394
ord696
ord3638
ord816
ord562
ord6166
ord1821
ord3605
ord656
ord5061
ord4629
ord4601
ord4710
ord4744
ord4602
ord5010
ord4828
ord6399
ord3517
ord1932
ord4265
ord6375
ord3016
ord4109
ord2966
ord5755
ord6188
ord5752
ord6182
ord4324
ord6185
ord6017
ord5869
ord5790
ord5674
ord5732
ord5575
ord5567
ord6057
ord5860
ord3591
ord6190
ord5462
ord1863
ord6655
ord1115
ord1568
ord1570
ord1179
ord342
ord1240
ord1194
ord1563
ord1248
ord1250
ord1571
ord600
ord826
ord269
ord3948
ord535
ord858
ord541
ord540
ord861
ord925
ord922
ord801
ord825
ord561
ord815
ord3733
ord4418
ord4616
ord4075
ord3074
ord3820
ord3826
ord3825
ord3396
ord2971
ord3076
ord2980
ord3257
ord3131
ord4459
ord3254
ord3142
ord2977
ord5710
ord5285
ord5303
ord4692
ord4074
ord2717
ord5298
ord5296
ord3341
ord2388
ord537
ord6654
ord4273
ord6919
ord6921
ord6278
ord6918
ord6920
ord4272
ord4124
ord2755
ord2910
ord5568
ord4155
ord2822
ord6390
ord5446
ord6379
ord5436
ord3313
ord5438
ord5580
ord6195
ord5195
ord354
ord5180
ord6381
ord1971
ord665
ord369
ord2763
ord2774
ord3314
ord676
ord389
ord2810
ord616
ord3210
ord2385
ord1197
ord356
ord2762
ord2773
ord4053
ord3176
ord4197
ord1972
ord2756
ord942
ord668
ord3447
ord6139
ord355
ord2507
ord3494
ord641
ord1165
ord1662
ord2644
ord823
ord6867
ord6279
ord6874
ord941
ord940
ord2634
ord765
ord3658
ord4224
ord2606
ord5193
ord1089
ord3917
ord5727
ord2504
ord2546
ord4480
ord6371
ord6466
ord800
ord3991
ord538

msvcrt

_wtoi
wcslen
_ftol
_wcsicmp
wcsncpy
_adjust_fdiv
_initterm
??1type_info@@UAE@XZ
_onexit
__dllonexit
wcscmp
free
_wcsdup
__CxxFrameHandler
_purecall
malloc
_mbschr
fgets
fgetws
wcschr
_wsplitpath
_wmakepath
wcsstr
toupper
wcstoul
wcstol
isspace
memmove
_CxxThrowException

kernel32

GetVersion
LocalAlloc
GetDriveTypeW
GetVersionExW
GetACP
FreeLibrary
lstrcmpW
GetModuleHandleW
GetModuleFileNameW
CreateProcessW
ExpandEnvironmentStringsW
GetTempFileNameW
GetTempPathW
CreateDirectoryW
SetCurrentDirectoryW
GetCurrentDirectoryW
SetFileAttributesW
FileTimeToLocalFileTime
CloseHandle
LCMapStringW
MultiByteToWideChar
WideCharToMultiByte
GetLocaleInfoW
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
GetLastError
FormatMessageW
LocalFree
LoadLibraryW
GetProcAddress
GetCurrentProcess
MulDiv
GetFileAttributesW
lstrcpyW
lstrlenW
DeleteFileW
lstrcpynW

user32

CallWindowProcW
ClientToScreen
SetWindowLongW
CopyIcon
SetCapture
ReleaseCapture
GetMessagePos
RedrawWindow
KillTimer
GetLastActivePopup
InvalidateRect
TabbedTextOutW
GrayStringW
IsDialogMessageW
TranslateMessage
GetClipboardData
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
DrawTextW
DestroyIcon
GetSystemMetrics
RegisterWindowMessageW
GetFocus
wvsprintfW
GetWindowTextW
MessageBoxW
GetForegroundWindow
CreatePopupMenu
InsertMenuW
CheckMenuRadioItem
SetForegroundWindow
SetRect
CreateWindowExW
DeferWindowPos
IsWindowVisible
EqualRect
UpdateWindow
GetParent
IsWindowEnabled
GetActiveWindow
SetActiveWindow
LoadBitmapW
GetDesktopWindow
DrawIconEx
GetIconInfo
GetWindowLongW
GetMonitorInfoW
MonitorFromWindow
SetWindowPos
EndDeferWindowPos
BeginDeferWindowPos
PtInRect
GetSysColorBrush
FillRect
ShowScrollBar
MapDialogRect
DrawFrameControl
GetClassNameW
MonitorFromPoint
SetRectEmpty
IntersectRect
IsWindow
GetClientRect
IsRectEmpty
DrawTextA
GetSysColor
SetCursor
LoadCursorW
LoadImageW
GetDC
ReleaseDC
CopyRect
InflateRect
GetWindowRect
OffsetRect
PostMessageW
EnableWindow
SendMessageW
RegisterClipboardFormatW
GetKeyState
GetWindow
LoadIconW
ScreenToClient
SystemParametersInfoW
PeekMessageW
SetTimer
DispatchMessageW

gdi32

TextOutW
Escape
RectVisible
PtVisible
ExtTextOutW
SetDIBits
BitBlt
GetDIBits
CreateCompatibleDC
CreateCompatibleBitmap
GetDeviceCaps
GetStockObject
GetObjectW
CreateFontIndirectW
DeleteObject
GetTextExtentPoint32W

advapi32

RegQueryValueExW
GetTokenInformation
OpenProcessToken
RegCreateKeyExW
RegOpenKeyExW
RegCloseKey

shell32

SHGetFileInfoW
ShellExecuteW
SHGetSpecialFolderPathW
ExtractIconExW
SHGetMalloc
SHGetPathFromIDListW
StrStrW
SHBrowseForFolderW

comctl32

ImageList_Draw
_TrackMouseEvent
ImageList_GetIconSize
ImageList_GetIcon
ImageList_GetImageCount
ImageList_ReplaceIcon
ImageList_AddMasked
ImageList_Remove

ole32

CoUninitialize
CoCreateInstance
CoInitialize

olepro32

ord252

oleaut32

VariantClear
OleLoadPicturePath

shlwapi

PathCanonicalizeW
PathRelativePathToW
PathIsURLW
PathIsRelativeW

Exports

Exports

CreateTasklistStorageInterface
GetInterfaceVersion

Sections

.text
Size: 164KB - Virtual size: 163KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 40KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 44KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 36KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
GPExport.dll
.dll windows:4 windows x86 arch:x86

caaec5e82039dfe8c9ee37365bdb9a89

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mfc42u

ord1165
ord941
ord942
ord4273
ord940
ord4124
ord6654
ord537
ord2606
ord5852
ord2912
ord2800
ord964
ord6313
ord4177
ord6388
ord5444
ord3313
ord6006
ord5774
ord2598
ord5188
ord3178
ord3506
ord3719
ord1989
ord3175
ord3171
ord798
ord922
ord6655
ord926
ord4197
ord5568
ord2910
ord6921
ord6919
ord2776
ord6874
ord859
ord6139
ord4199
ord2822
ord933
ord920
ord5210
ord6664
ord834
ord5929
ord3805
ord3050
ord929
ord2914
ord5857
ord665
ord354
ord2805
ord533
ord6381
ord5462
ord1863
ord5706
ord6279
ord269
ord826
ord600
ord1571
ord1250
ord1248
ord1563
ord1194
ord1240
ord541
ord801
ord925
ord4229
ord2371
ord535
ord4272
ord6379
ord5436
ord3898
ord2099
ord2036
ord2440
ord2836
ord6390
ord5830
ord5446
ord2810
ord861
ord2755
ord6278
ord2756
ord927
ord858
ord6868
ord538
ord540
ord800
ord3658
ord6466
ord823
ord815
ord825
ord561
ord3733
ord4418
ord4616
ord4075
ord3074
ord3820
ord3826
ord3825
ord2971
ord3076
ord2980
ord3257
ord3131
ord4459
ord3254
ord3142
ord2977
ord3948
ord5710
ord5285
ord5303
ord4692
ord4074
ord2717
ord5298
ord5296
ord3341
ord2388
ord5193
ord1089
ord3917
ord5727
ord2504
ord2546
ord4480
ord6371
ord1115
ord1173
ord1568
ord1570
ord1179
ord342
ord4269

msvcrt

__dllonexit
_initterm
malloc
_mbschr
_adjust_fdiv
??1type_info@@UAE@XZ
_onexit
fgets
fgetws
_CxxThrowException
_wmakepath
_wsplitpath
wcschr
swscanf
free
_ftol
wcslen
iswdigit
wcscmp
memset
_wtoi
_wcsicmp
__CxxFrameHandler
_purecall

kernel32

DeleteFileW
GetACP
lstrcpyW
MulDiv
GetDateFormatW
FileTimeToLocalFileTime
FileTimeToSystemTime
SystemTimeToFileTime
LocalFileTimeToFileTime
LCMapStringW
MultiByteToWideChar
WideCharToMultiByte
CloseHandle
lstrlenW
FormatMessageW
LocalFree
GetCurrentProcess
InterlockedDecrement
GetTickCount
SetEndOfFile
GetFileSize
GetLastError
LoadLibraryW
GetProcAddress
SetFileAttributesW
GetFileAttributesW
CreateDirectoryW
GetTempPathW
ExpandEnvironmentStringsW
GetModuleFileNameW
GetTimeFormatW
LocalAlloc
InterlockedIncrement
GetLocaleInfoW
lstrlenA

user32

LoadImageW
GetDC
ReleaseDC
RegisterWindowMessageW
DestroyIcon
PostMessageW
RegisterClipboardFormatW

gdi32

GetDeviceCaps

advapi32

OpenProcessToken
GetTokenInformation

shell32

SHGetSpecialFolderPathW

ole32

CoCreateInstance
OleRun

oleaut32

GetErrorInfo
SysFreeString
SysAllocString
VariantClear
SysAllocStringByteLen
SysStringByteLen
SysAllocStringLen

shlwapi

PathCanonicalizeW

Exports

Exports

CreateExportInterface
CreateImportInterface
GetInterfaceVersion

Sections

.text
Size: 72KB - Virtual size: 69KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
GanttChartExt.dll
.dll windows:4 windows x86 arch:x86

1571165e0d2da9a594612a1a04f45d1e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mfc42u

ord3688
ord5781
ord5784
ord5783
ord6896
ord3420
ord6125
ord5785
ord3805
ord3792
ord3049
ord836
ord929
ord5599
ord2403
ord2015
ord4392
ord4270
ord940
ord941
ord924
ord5155
ord5156
ord5154
ord4899
ord4736
ord4970
ord4942
ord4352
ord4371
ord5283
ord4829
ord2293
ord5886
ord4848
ord4370
ord4213
ord2570
ord3577
ord567
ord616
ord6115
ord2057
ord4847
ord4215
ord2576
ord3649
ord809
ord2114
ord6279
ord6278
ord6868
ord5706
ord2755
ord4155
ord3284
ord4158
ord807
ord554
ord556
ord2430
ord1637
ord1165
ord2567
ord4390
ord3569
ord2070
ord5880
ord2916
ord2004
ord6266
ord2858
ord1088
ord5867
ord6174
ord291
ord537
ord3290
ord6150
ord2522
ord4360
ord4051
ord5467
ord4116
ord2381
ord1703
ord1708
ord5230
ord6365
ord5275
ord5058
ord5244
ord2436
ord3725
ord559
ord812
ord2400
ord4263
ord6142
ord2088
ord5080
ord2706
ord6456
ord5858
ord6140
ord1126
ord4491
ord768
ord489
ord1899
ord4253
ord818
ord4472
ord1808
ord2606
ord700
ord398
ord4184
ord913
ord5628
ord1761
ord6871
ord4078
ord3084
ord3614
ord755
ord6168
ord3871
ord470
ord4638
ord1764
ord6362
ord2405
ord2016
ord4212
ord2568
ord4391
ord3347
ord3572
ord384
ord692
ord686
ord4220
ord2932
ord3798
ord5259
ord4055
ord5263
ord1712
ord4752
ord1772
ord1933
ord3393
ord3728
ord810
ord4266
ord3291
ord6193
ord3915
ord2855
ord4282
ord4500
ord2574
ord4396
ord3365
ord3635
ord693
ord6437
ord6238
ord2092
ord2085
ord2115
ord3016
ord5977
ord2751
ord2036
ord3898
ord4199
ord2822
ord4128
ord4292
ord2745
ord2444
ord640
ord1633
ord323
ord2440
ord5830
ord5568
ord2910
ord1173
ord2350
ord939
ord1930
ord3312
ord3133
ord3867
ord6211
ord6655
ord6664
ord834
ord926
ord3051
ord919
ord4124
ord4272
ord2756
ord6920
ord6921
ord6919
ord6654
ord859
ord5604
ord927
ord4197
ord5624
ord1644
ord2455
ord2862
ord909
ord4180
ord394
ord696
ord3638
ord3292
ord3995
ord6004
ord3285
ord2572
ord4394
ord3397
ord3625
ord682
ord6712
ord6900
ord1794
ord2442
ord5674
ord5732
ord4042
ord609
ord2423
ord3629
ord1635
ord2445
ord3706
ord783
ord2104
ord6124
ord3747
ord5142
ord1792
ord4428
ord4369
ord4846
ord2505
ord293
ord4222
ord3740
ord5917
ord1932
ord4265
ord6375
ord4109
ord2966
ord5755
ord6188
ord5752
ord6182
ord4324
ord6185
ord6017
ord5869
ord5790
ord5575
ord5567
ord6057
ord5860
ord3591
ord6190
ord397
ord699
ord4224
ord1263
ord1229
ord816
ord562
ord1137
ord1863
ord935
ord933
ord2559
ord4120
ord6754
ord3050
ord2372
ord3905
ord3909
ord3749
ord289
ord613
ord2854
ord3288
ord1115
ord1568
ord1570
ord1179
ord342
ord1240
ord1194
ord1563
ord1248
ord1250
ord1571
ord600
ord826
ord269
ord2857
ord5929
ord3875
ord6139
ord5857
ord6136
ord5854
ord3983
ord3282
ord3298
ord920
ord937
ord2053
ord4279
ord3737
ord5286
ord1768
ord6051
ord541
ord536
ord6874
ord922
ord858
ord801
ord6195
ord6451
ord2362
ord861
ord2099
ord2836
ord6379
ord5436
ord6390
ord5446
ord535
ord5949
ord341
ord2746
ord4470
ord5871
ord4294
ord4704
ord3087
ord6617
ord2371
ord3566
ord2634
ord6597
ord4118
ord1634
ord6330
ord540
ord2810
ord925
ord2078
ord5945
ord538
ord942
ord4803
ord4229
ord2294
ord654
ord2406
ord3621
ord800
ord324
ord641
ord3592
ord4419
ord4621
ord5273
ord2116
ord2438
ord5257
ord1720
ord5059
ord3744
ord6372
ord2047
ord2640
ord4435
ord4831
ord3793
ord5276
ord4347
ord6370
ord5157
ord2377
ord5237
ord4401
ord1767
ord4073
ord6048
ord2506
ord4992
ord5261
ord3658
ord3568
ord1143
ord3948
ord823
ord2859
ord825
ord561
ord815
ord3733
ord4418
ord4616
ord4075
ord3074
ord3820
ord3826
ord3825
ord3396
ord2971
ord3076
ord2980
ord3257
ord3131
ord4459
ord3254
ord3142
ord2977
ord5710
ord5285
ord5303
ord4692
ord4074
ord2717
ord5298
ord5296
ord3341
ord2388
ord5193
ord1089
ord3917
ord5727
ord2504
ord2546
ord4480
ord6371
ord6466

msvcrt

_except_handler3
wcstod
swprintf
setlocale
wcsncpy
_wcsicmp
_wtol
iswlower
towupper
iswupper
towlower
memmove
_ftol
wcscmp
_wtoi
memset
memcpy
__CxxFrameHandler
_purecall
free
_strdup
qsort
_wsplitpath
_wmakepath
_wcsdup
malloc
__dllonexit
_onexit
??1type_info@@UAE@XZ
_initterm
_adjust_fdiv

kernel32

GetCurrentThread
LCMapStringW
GetLastError
LocalFree
GetCurrentProcess
GetDateFormatW
GetLocaleInfoW
FileTimeToLocalFileTime
FileTimeToSystemTime
SystemTimeToFileTime
LocalFileTimeToFileTime
lstrcpyW
GetFileAttributesW
lstrlenW
lstrcpynW
LoadLibraryW
GetProcAddress
FreeLibrary
MulDiv
GetModuleFileNameW
GetModuleHandleW
GetVersionExW
GetTimeFormatW
LocalAlloc
SetLastError
VirtualQuery
GetCurrentThreadId
InterlockedCompareExchange
VirtualProtect
ResumeThread
FlushInstructionCache
SetThreadContext
GetThreadContext
VirtualFree
SuspendThread
DebugBreak
VirtualAlloc

user32

GetForegroundWindow
GetLastActivePopup
GrayStringW
DefWindowProcW
GetClassInfoW
GetCapture
GetCursor
RedrawWindow
IsRectEmpty
GetWindowRect
LoadMenuW
DestroyIcon
IntersectRect
ReleaseCapture
ClientToScreen
DragDetect
SetCapture
GetSystemMetrics
SetWindowPos
InflateRect
GetSysColorBrush
GetSysColor
OffsetRect
TrackMouseEvent
MessageBeep
ScreenToClient
GetDC
ReleaseDC
GetMessagePos
InvalidateRect
PostMessageW
CopyRect
UpdateWindow
IsWindow
EnableWindow
GetClientRect
GetFocus
SetWindowLongW
DeferWindowPos
SendMessageW
LoadIconW
RegisterWindowMessageW
SetScrollPos
ScrollWindowEx
SetTimer
GetKeyState
GetKeyNameTextW
SystemParametersInfoW
EndDeferWindowPos
BeginDeferWindowPos
SetRect
CopyIcon
RegisterClipboardFormatW
DrawTextW
MapDialogRect
ChildWindowFromPoint
GetNextDlgTabItem
IsChild
MapVirtualKeyW
EqualRect
GetWindow
LockWindowUpdate
DrawFrameControl
GetClassNameW
GetDesktopWindow
DrawIconEx
GetIconInfo
GetWindowLongW
SetParent
TabbedTextOutW
CallWindowProcW
GetScrollRange
ShowWindow
ShowScrollBar
GetScrollInfo
SubtractRect
GetCursorPos
MoveWindow
GetParent
SetFocus
GetMonitorInfoW
MonitorFromWindow
MonitorFromRect
MonitorFromPoint
WindowFromDC
GetTabbedTextExtentW
SetCursor
LoadCursorW
LoadImageW
UnionRect
SetRectEmpty
KillTimer
GetScrollPos
DrawFocusRect
GetDlgItem
IsWindowVisible
GetWindowDC
LoadBitmapW
IsWindowEnabled
GetMenuItemCount
GetMenuItemID
GetDlgCtrlID
GetSubMenu
PtInRect
SetMenuDefaultItem

gdi32

Rectangle
GetWindowOrgEx
Escape
ExtTextOutW
TextOutW
RectVisible
PtVisible
SetDIBits
BitBlt
GetDIBits
CreateCompatibleDC
CreateCompatibleBitmap
RoundRect
GetTextMetricsW
GetDeviceCaps
GetStockObject
GetObjectW
CreateFontIndirectW
RestoreDC
SaveDC
GetBkColor
DeleteObject
Polyline
CreatePen
Polygon
GetTextExtentPoint32W
SelectObject
CreateSolidBrush

advapi32

RegCreateKeyExW
RegOpenKeyExW
RegCloseKey
RegQueryValueExW

shell32

ExtractIconExW

comctl32

ImageList_AddMasked
ImageList_Draw
ImageList_GetImageCount
ImageList_GetImageInfo
_TrackMouseEvent
ImageList_Destroy
ImageList_Create
ImageList_GetIconSize
ImageList_ReplaceIcon
ImageList_DragEnter
ImageList_BeginDrag
ImageList_DragMove
ImageList_DragShowNolock
ImageList_EndDrag
ImageList_DragLeave
ImageList_GetIcon

olepro32

ord252

msimg32

GradientFill

shlwapi

PathCanonicalizeW

Exports

Exports

CreateUIExtensionInterface
GetInterfaceVersion

Sections

.text
Size: 288KB - Virtual size: 287KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 56KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.detourc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.detourd
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 40KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Gma.CodeCloud.Controls.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\_code\ToDoList_8.3\Plugins\3rdParty\CloudControl\obj\Release\Gma.CodeCloud.Controls.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
HTMLContentControlBridge.dll
.dll windows:6 windows x86 arch:x86

1fe50ea8806963f5f51e5721f20cd2bc

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\_code\ToDoList_8.3\Plugins\Release\HTMLContentControlBridge.pdb

Imports

vcruntime140

_except_handler4_common
memset
__std_type_info_destroy_list
_CxxThrowException
__std_exception_destroy
__std_exception_copy
__FrameUnwindFilter

api-ms-win-crt-runtime-l1-1-0

_cexit
_crt_atexit
_execute_onexit_table
_register_onexit_function
terminate
_initialize_narrow_environment
_configure_narrow_argv
_seh_filter_dll
_initterm_e
_initterm
abort
_initialize_onexit_table

api-ms-win-crt-heap-l1-1-0

_callnewh
free
malloc

kernel32

IsDebuggerPresent
GetCurrentProcess
IsProcessorFeaturePresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
LoadLibraryW
Sleep
TerminateProcess

user32

MoveWindow
RegisterWindowMessageW
SetParent
DestroyWindow
DestroyIcon
SetWindowLongW
LoadImageW

mscoree

_CorDllMain

Exports

Exports

CreateContentInterface
GetInterfaceVersion

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 512B - Virtual size: 60B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 708B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
HTMLContentControlCore.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\_code\ToDoList_8.3\Plugins\ContentControl\HTMLContentControl\HTMLContentControlCore\obj\Release\HTMLContentControlCore.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 38KB - Virtual size: 38KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
HTMLReportExporterBridge.dll
.dll windows:6 windows x86 arch:x86

4ea7f8dbdf9e18c8ebaa5a4a5a9d6ec2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\_code\ToDoList_8.3\Plugins\Release\HTMLReportExporterBridge.pdb

Imports

vcruntime140

__FrameUnwindFilter
memset
__std_type_info_destroy_list
_CxxThrowException
__std_exception_destroy
__std_exception_copy
_except_handler4_common

api-ms-win-crt-runtime-l1-1-0

_cexit
_crt_atexit
_execute_onexit_table
_register_onexit_function
terminate
_initialize_narrow_environment
_configure_narrow_argv
_seh_filter_dll
_initterm_e
_initterm
abort
_initialize_onexit_table

api-ms-win-crt-heap-l1-1-0

_callnewh
free
malloc

kernel32

GetCurrentThreadId
UnhandledExceptionFilter
IsDebuggerPresent
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
GetCurrentProcess
TerminateProcess
LoadLibraryW
Sleep
SetUnhandledExceptionFilter

user32

RegisterWindowMessageW
LoadImageW

mscoree

_CorDllMain

Exports

Exports

CreateExportInterface
CreateImportInterface
GetInterfaceVersion

Sections

.text
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 512B - Virtual size: 60B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 588B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
HTMLReportExporterCore.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\_code\ToDoList_8.3\Plugins\ImportExport\HTMLReportExporter\HTMLReportExporterCore\obj\Release\HTMLReportExporterCore.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 106KB - Virtual size: 105KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
HtmlAgilityPack.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\Users\Jonathan\source\repos\HtmlAgilityPack\HtmlAgilityPack.Net40\obj\Release\HtmlAgilityPack.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 150KB - Virtual size: 150KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ImageHelper.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\_code\ToDoList_8.3\Plugins\ImageHelper\obj\Release\ImageHelper.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 932B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Install.Linux.txt
Install.Windows.txt
Itenso.Rtf.Converter.Html.dll
Itenso.Rtf.Interpreter.dll
Itenso.Rtf.Parser.dll
Itenso.Solutions.Community.Rtf2Html.dll
Itenso.Sys.dll
KanbanBoard.dll
.dll windows:4 windows x86 arch:x86

d43948a251dfc10c156a90f47698f872

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mfc42u

ord3983
ord5857
ord6139
ord5815
ord3642
ord398
ord832
ord5590
ord6874
ord913
ord700
ord2810
ord5604
ord3434
ord2634
ord6211
ord812
ord6140
ord559
ord6871
ord2400
ord4215
ord2576
ord3649
ord2430
ord6266
ord1637
ord4396
ord537
ord3281
ord6003
ord6898
ord3296
ord3993
ord5155
ord5156
ord5154
ord4899
ord4736
ord4970
ord4942
ord4352
ord5261
ord4371
ord4992
ord2506
ord6048
ord1767
ord5283
ord4829
ord4419
ord2294
ord2293
ord6330
ord2932
ord4848
ord1197
ord5886
ord4370
ord5276
ord925
ord2805
ord3592
ord3568
ord641
ord324
ord4229
ord4803
ord942
ord6617
ord3087
ord4704
ord5945
ord2078
ord4470
ord4847
ord809
ord6279
ord6278
ord6868
ord5706
ord2755
ord3284
ord4158
ord807
ord554
ord556
ord1165
ord2822
ord5568
ord2910
ord940
ord4272
ord941
ord2567
ord4390
ord3569
ord2070
ord4199
ord3688
ord5783
ord4128
ord4292
ord5784
ord2088
ord3614
ord3292
ord4279
ord4120
ord1932
ord4265
ord6375
ord2862
ord3016
ord4109
ord2966
ord5755
ord6188
ord5752
ord6182
ord4324
ord6185
ord6017
ord6168
ord5869
ord5790
ord5674
ord5732
ord5575
ord5567
ord6057
ord5860
ord3591
ord755
ord6190
ord470
ord3629
ord1635
ord2445
ord2756
ord6920
ord6921
ord6919
ord6654
ord6655
ord924
ord859
ord4197
ord4184
ord2559
ord860
ord3805
ord6451
ord3049
ord836
ord6664
ord834
ord5929
ord3875
ord3420
ord3050
ord929
ord919
ord3747
ord3288
ord1173
ord4078
ord1930
ord3312
ord2072
ord3133
ord3871
ord3798
ord6195
ord5858
ord3867
ord2572
ord4394
ord3397
ord3625
ord682
ord3991
ord6115
ord4688
ord5142
ord1794
ord2081
ord1840
ord2574
ord3365
ord3635
ord693
ord4238
ord6238
ord6896
ord1088
ord6754
ord3905
ord6316
ord5949
ord3092
ord1792
ord4428
ord4369
ord4846
ord2505
ord293
ord4222
ord3740
ord4474
ord2442
ord768
ord489
ord1899
ord4253
ord4472
ord1808
ord5628
ord1761
ord4638
ord1764
ord6362
ord2405
ord2016
ord4212
ord2568
ord4391
ord3347
ord3572
ord692
ord4220
ord5259
ord4055
ord5263
ord1712
ord4752
ord1772
ord4042
ord5880
ord2916
ord2004
ord2858
ord5867
ord6174
ord291
ord3290
ord6150
ord2522
ord4360
ord4051
ord5467
ord4116
ord2381
ord1703
ord1708
ord5230
ord6365
ord5275
ord5058
ord5244
ord2436
ord3725
ord4263
ord6142
ord5080
ord6456
ord1126
ord4491
ord609
ord2423
ord5624
ord1644
ord2455
ord909
ord4180
ord394
ord696
ord3638
ord6607
ord397
ord699
ord2144
ord1821
ord3605
ord656
ord3706
ord783
ord2104
ord6124
ord4224
ord816
ord562
ord6166
ord1863
ord2085
ord818
ord3737
ord2406
ord3621
ord3566
ord2444
ord1634
ord323
ord1633
ord5781
ord2745
ord640
ord1115
ord1568
ord1570
ord1179
ord342
ord1240
ord1194
ord1563
ord1248
ord1250
ord1571
ord600
ord826
ord269
ord4118
ord5830
ord2036
ord861
ord3898
ord2746
ord541
ord6193
ord2114
ord4282
ord289
ord5785
ord4124
ord613
ord4294
ord5977
ord5599
ord3976
ord3084
ord3909
ord5854
ord2099
ord2053
ord6136
ord6597
ord4018
ord5871
ord2373
ord4155
ord922
ord2854
ord2372
ord2706
ord2057
ord3995
ord3282
ord3792
ord3291
ord2371
ord2089
ord2855
ord2857
ord2115
ord4266
ord1933
ord2440
ord801
ord2836
ord384
ord341
ord810
ord686
ord654
ord3728
ord3393
ord4401
ord1143
ord3948
ord2859
ord561
ord815
ord3733
ord4616
ord3396
ord5710
ord5285
ord5303
ord4692
ord4074
ord2717
ord5298
ord5296
ord3341
ord2388
ord5193
ord1089
ord3917
ord5727
ord2504
ord2546
ord4480
ord6371
ord6466
ord535
ord6390
ord5446
ord823
ord6379
ord5436
ord858
ord2606
ord540
ord538
ord5273
ord4270
ord616
ord800
ord825
ord567
ord3577
ord4418
ord4621
ord4075
ord3074
ord3820
ord3826
ord3825
ord2971
ord3076
ord2980
ord3257
ord3131
ord4459
ord3254
ord3142
ord2977
ord2116
ord2438
ord5257
ord1720
ord5059
ord3744
ord6372
ord2047
ord2640
ord4435
ord4831
ord3793
ord5286
ord4347
ord6370
ord5157
ord2377
ord5237
ord4392
ord1768
ord4073
ord6051
ord2570
ord4213
ord2015
ord2403
ord937
ord3658

msvcrt

memset
_except_handler3
wcsncpy
_wcsnicmp
wcsncmp
memcpy
_strdup
setlocale
_wtoi
_wcsicmp
qsort
wcstod
memmove
wcscmp
_ftol
free
_wcsdup
_purecall
__CxxFrameHandler
_wsplitpath
_wmakepath
_wtol
malloc
??1type_info@@UAE@XZ
__dllonexit
_onexit
_initterm
_adjust_fdiv

kernel32

GetFileAttributesW
FileTimeToLocalFileTime
FileTimeToSystemTime
GetModuleHandleW
GetVersionExW
LCMapStringW
GetLocaleInfoW
lstrlenW
GlobalLock
GlobalUnlock
GetLastError
LocalFree
GetCurrentProcess
GetACP
lstrcpyW
LoadLibraryW
GetProcAddress
FreeLibrary
MulDiv
GetModuleFileNameW
LocalFileTimeToFileTime
SystemTimeToFileTime
lstrcpynW
GetCurrentThread
LocalAlloc
GetCurrentThreadId
lstrcmpiW
SetLastError
VirtualQuery
InterlockedCompareExchange
VirtualProtect
ResumeThread
FlushInstructionCache
SetThreadContext
GetThreadContext
VirtualFree
SuspendThread
DebugBreak
VirtualAlloc

user32

CallWindowProcW
UnhookWindowsHookEx
SetWindowsHookExW
CallNextHookEx
LoadImageW
DestroyIcon
DrawTextW
LoadMenuW
SetWindowLongW
CreatePopupMenu
AppendMenuW
ClientToScreen
SetCapture
ReleaseCapture
SetWindowTextW
IsRectEmpty
GetWindowRect
IsWindowVisible
UpdateWindow
GetDC
ReleaseDC
GetMessagePos
PostMessageW
DragDetect
ScreenToClient
PtInRect
GetParent
OffsetRect
CopyRect
GetFocus
InflateRect
GetSysColor
GetClientRect
LoadIconW
GetSystemMetrics
EnableWindow
SendMessageW
RegisterWindowMessageW
ShowScrollBar
DrawFocusRect
DeferWindowPos
SetWindowPos
EndDeferWindowPos
BeginDeferWindowPos
GetNextDlgTabItem
IsChild
SetScrollPos
ScrollWindowEx
GetScrollPos
SetRect
CopyIcon
GetDlgItem
LockWindowUpdate
RegisterClipboardFormatW
DrawFrameControl
GetClassNameW
MapVirtualKeyW
GetKeyNameTextW
SystemParametersInfoW
GetClipboardData
OpenClipboard
EmptyClipboard
CloseClipboard
GrayStringW
MapDialogRect
GetWindowDC
GetMenuItemCount
GetMenuItemID
GetSubMenu
SetMenuDefaultItem
RedrawWindow
GetSysColorBrush
FillRect
SetParent
InvalidateRect
IsWindowEnabled
TabbedTextOutW
SetTimer
GetWindow
GetLastActivePopup
GetForegroundWindow
GetDlgCtrlID
KillTimer
GetKeyState
EqualRect
LoadBitmapW
GetDesktopWindow
DrawIconEx
GetIconInfo
GetWindowLongW
GetMonitorInfoW
MonitorFromWindow
MonitorFromRect
MonitorFromPoint
SetRectEmpty
WindowFromDC
IntersectRect
IsWindow
DrawTextA
GetTabbedTextExtentW
SetCursor
GetCapture
LoadCursorW

gdi32

SetBkMode
SetTextColor
Polyline
SetDIBits
GetWindowOrgEx
Escape
ExtTextOutW
TextOutW
RectVisible
PtVisible
GetDIBits
GetBkColor
CreatePen
RoundRect
GetDeviceCaps
GetStockObject
GetObjectW
CreateFontIndirectW
DeleteObject
RestoreDC
SaveDC
CreateSolidBrush
CreateCompatibleDC
CreateCompatibleBitmap
BitBlt
SelectObject
GetTextMetricsW
GetTextExtentPoint32W

advapi32

RegCreateKeyExW
RegOpenKeyExW
RegCloseKey
RegQueryValueExW

comctl32

ImageList_DragEnter
ImageList_EndDrag
ImageList_DragMove
ImageList_AddMasked
ImageList_GetIconSize
ImageList_GetIcon
ImageList_GetImageCount
ImageList_ReplaceIcon
_TrackMouseEvent
ImageList_GetImageInfo
ImageList_Draw
ImageList_DrawEx
ImageList_BeginDrag

olepro32

ord252

msimg32

GradientFill

shlwapi

PathCanonicalizeW

Exports

Exports

CreateUIExtensionInterface
GetInterfaceVersion

Sections

.text
Size: 340KB - Virtual size: 339KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.detourc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.detourd
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 48KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
LinkLabelEx.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\_code\ToDoList_8.3\Plugins\3rdParty\LinkLabelEx\obj\Release\LinkLabelEx.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 904B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
MDContentControlBridge.dll
.dll windows:6 windows x86 arch:x86

1fe50ea8806963f5f51e5721f20cd2bc

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\_code\ToDoList_8.3\Plugins\Release\MDContentControlBridge.pdb

Imports

vcruntime140

_except_handler4_common
memset
__std_type_info_destroy_list
_CxxThrowException
__std_exception_destroy
__std_exception_copy
__FrameUnwindFilter

api-ms-win-crt-runtime-l1-1-0

_cexit
_crt_atexit
_execute_onexit_table
_register_onexit_function
terminate
_initialize_narrow_environment
_configure_narrow_argv
_seh_filter_dll
_initterm_e
_initterm
abort
_initialize_onexit_table

api-ms-win-crt-heap-l1-1-0

_callnewh
free
malloc

kernel32

IsDebuggerPresent
GetCurrentProcess
IsProcessorFeaturePresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
LoadLibraryW
Sleep
TerminateProcess

user32

MoveWindow
RegisterWindowMessageW
SetParent
DestroyWindow
DestroyIcon
SetWindowLongW
LoadImageW

mscoree

_CorDllMain

Exports

Exports

CreateContentInterface
GetInterfaceVersion

Sections

.text
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 512B - Virtual size: 60B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 708B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
MDContentControlCore.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\_code\ToDoList_8.3\Plugins\ContentControl\MDContentControl\MDContentControlCore\obj\Release\MDContentControlCore.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
MLOImport.dll
.dll windows:4 windows x86 arch:x86

d73b563520be33f3591d08e0846b182d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mfc42u

ord927
ord2822
ord5210
ord6664
ord834
ord5929
ord3805
ord1165
ord925
ord5857
ord665
ord354
ord2805
ord533
ord6381
ord2914
ord5462
ord1863
ord6139
ord859
ord6874
ord2776
ord6919
ord6921
ord6278
ord6279
ord2910
ord5568
ord2755
ord6390
ord6379
ord5436
ord5446
ord4197
ord6868
ord541
ord801
ord926
ord2756
ord6655
ord5706
ord922
ord798
ord3171
ord3175
ord1989
ord3719
ord3506
ord3178
ord269
ord826
ord600
ord1571
ord1250
ord1248
ord5188
ord2598
ord5774
ord6006
ord3313
ord5444
ord6388
ord4177
ord6313
ord964
ord2800
ord2912
ord2810
ord5852
ord2606
ord2099
ord2836
ord537
ord6654
ord4124
ord940
ord4273
ord861
ord942
ord4272
ord941
ord3658
ord6466
ord823
ord815
ord561
ord3733
ord4418
ord4616
ord4075
ord3074
ord3820
ord3826
ord3825
ord3396
ord2971
ord3076
ord2980
ord3257
ord3131
ord4459
ord3254
ord3142
ord2977
ord3948
ord5710
ord5285
ord5303
ord4692
ord4074
ord2717
ord5298
ord5296
ord3341
ord2388
ord5193
ord1089
ord3917
ord5727
ord2504
ord2546
ord4480
ord6371
ord398
ord540
ord3434
ord700
ord535
ord4199
ord913
ord858
ord538
ord800
ord1115
ord1173
ord1568
ord1570
ord1179
ord342
ord1240
ord1194
ord1563
ord825

msvcrt

__dllonexit
??1type_info@@UAE@XZ
_onexit
_initterm
_adjust_fdiv
malloc
_mbschr
fgets
fgetws
_CxxThrowException
_wmakepath
_wsplitpath
wcschr
swscanf
setlocale
_strdup
wcstod
free
wcslen
_wtoi
iswdigit
_wcsicmp
wcscmp
__CxxFrameHandler
_purecall

kernel32

CloseHandle
DeleteFileW
GetACP
lstrcpyW
MulDiv
GetDateFormatW
FileTimeToLocalFileTime
FileTimeToSystemTime
SystemTimeToFileTime
LocalFileTimeToFileTime
GetTimeFormatW
LCMapStringW
WideCharToMultiByte
GetLocaleInfoW
lstrlenW
FormatMessageW
LocalFree
LoadLibraryW
GetProcAddress
GetCurrentProcess
InterlockedDecrement
GetTickCount
SetEndOfFile
GetFileSize
GetLastError
SetFileAttributesW
GetFileAttributesW
CreateDirectoryW
GetTempPathW
ExpandEnvironmentStringsW
GetModuleFileNameW
LocalAlloc
InterlockedIncrement
MultiByteToWideChar
lstrlenA

user32

LoadImageW
GetDC
ReleaseDC
DestroyIcon
RegisterClipboardFormatW

gdi32

GetDeviceCaps

advapi32

OpenProcessToken
GetTokenInformation

shell32

SHGetSpecialFolderPathW

ole32

CoCreateInstance
OleRun

oleaut32

GetErrorInfo
SysAllocStringLen
SysStringByteLen
SysAllocStringByteLen
VariantClear
SysAllocString
SysFreeString

shlwapi

PathCanonicalizeW

Exports

Exports

CreateExportInterface
CreateImportInterface
GetInterfaceVersion

Sections

.text
Size: 60KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
MSDN.HtmlEditorControl.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\_code\ToDoList_8.3\Plugins\3rdParty\MSHtmlEditorControl\obj\Release\MSDN.HtmlEditorControl.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 304KB - Virtual size: 302KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Markdig.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\a\markdig\markdig\src\Markdig\obj\Release\net40\Markdig.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 391KB - Virtual size: 390KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Microsoft.VisualStudio.OLE.Interop.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mscoree

_CorDllMain

Sections

.text
Size: 104KB - Virtual size: 102KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 848B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
MindMapUIExtensionBridge.dll
.dll windows:6 windows x86 arch:x86

20ebf8492161cdd29f7605670267db96

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\_code\ToDoList_8.3\Plugins\Release\MindMapUIExtensionBridge.pdb

Imports

vcruntime140

_except_handler4_common
memset
__std_type_info_destroy_list
_CxxThrowException
__std_exception_destroy
__std_exception_copy
__FrameUnwindFilter

api-ms-win-crt-runtime-l1-1-0

_cexit
_crt_atexit
_execute_onexit_table
_register_onexit_function
terminate
_initialize_narrow_environment
_configure_narrow_argv
_seh_filter_dll
_initterm_e
_initterm
abort
_initialize_onexit_table

api-ms-win-crt-heap-l1-1-0

_callnewh
free
malloc

kernel32

InitializeSListHead
IsProcessorFeaturePresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
IsDebuggerPresent
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
TerminateProcess
LoadLibraryW
Sleep
GetCurrentProcess

user32

RegisterWindowMessageW
DestroyWindow
LoadImageW
MoveWindow
SetWindowLongW
SetParent

mscoree

_CorDllMain

Exports

Exports

CreateUIExtensionInterface
GetInterfaceVersion

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 512B - Virtual size: 60B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 712B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
MindMapUIExtensionCore.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\_code\ToDoList_8.3\Plugins\UIExension\MindMapUIExtension\MindMapUIExtensionCore\obj\x86\Release\MindMapUIExtensionCore.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 62KB - Virtual size: 61KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
MySpellCheck.dll
.dll windows:4 windows x86 arch:x86

7b04dc4adf59543e58f7000066e4d579

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetFileAttributesW
MultiByteToWideChar
lstrlenW
WideCharToMultiByte

msvcrt

fflush
fprintf
_iob
??3@YAXPAX@Z
fclose
strncmp
fgets
fopen
strcmp
strlen
atoi
malloc
??2@YAPAXI@Z
memchr
strcpy
strchr
calloc
_strdup
strstr
abs
_initterm
_adjust_fdiv
??1type_info@@UAE@XZ
free
memcpy
__CxxFrameHandler

Exports

Exports

CreateSpellCheckerInterface

Sections

.text
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 360B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 876B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
PDFExporterBridge.dll
.dll windows:6 windows x86 arch:x86

4ea7f8dbdf9e18c8ebaa5a4a5a9d6ec2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\_code\ToDoList_8.3\Plugins\Release\PDFExporterBridge.pdb

Imports

vcruntime140

__FrameUnwindFilter
memset
__std_type_info_destroy_list
_CxxThrowException
__std_exception_destroy
__std_exception_copy
_except_handler4_common

api-ms-win-crt-runtime-l1-1-0

_cexit
_crt_atexit
_execute_onexit_table
_register_onexit_function
terminate
_initialize_narrow_environment
_configure_narrow_argv
_seh_filter_dll
_initterm_e
_initterm
abort
_initialize_onexit_table

api-ms-win-crt-heap-l1-1-0

_callnewh
free
malloc

kernel32

GetCurrentThreadId
UnhandledExceptionFilter
IsDebuggerPresent
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
GetCurrentProcess
TerminateProcess
LoadLibraryW
Sleep
SetUnhandledExceptionFilter

user32

RegisterWindowMessageW
LoadImageW

mscoree

_CorDllMain

Exports

Exports

CreateExportInterface
CreateImportInterface
GetInterfaceVersion

Sections

.text
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 512B - Virtual size: 60B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 592B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
PDFExporterCore.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\_code\ToDoList_8.3\Plugins\ImportExport\PDFExporter\PDFExporterCore\obj\Release\PDFExporterCore.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 984B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
PlainTextImport.dll
.dll windows:4 windows x86 arch:x86

26340b4667312143ecc66bd3015dfaec

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mfc42u

ord2717
ord4074
ord4692
ord5303
ord5285
ord5710
ord3948
ord3396
ord4616
ord3733
ord561
ord815
ord823
ord6655
ord537
ord5568
ord2910
ord1173
ord3658
ord2836
ord2810
ord2606
ord2099
ord5446
ord5436
ord6379
ord6390
ord4124
ord4272
ord2756
ord6279
ord6278
ord6921
ord6919
ord1165
ord3131
ord397
ord699
ord5298
ord533
ord6381
ord1808
ord4224
ord2914
ord5462
ord1863
ord1568
ord1570
ord1179
ord342
ord1240
ord1194
ord1563
ord1248
ord1250
ord1571
ord600
ord826
ord269
ord4459
ord3254
ord3142
ord2977
ord5273
ord2116
ord2438
ord5257
ord1720
ord5059
ord3744
ord6372
ord2047
ord2640
ord4435
ord4831
ord3793
ord5276
ord4347
ord6370
ord5157
ord2377
ord5237
ord4401
ord1767
ord4073
ord6048
ord2506
ord4992
ord4847
ord4370
ord5261
ord3577
ord4418
ord3397
ord5286
ord4392
ord1768
ord6051
ord5296
ord3341
ord2388
ord5193
ord1089
ord3917
ord5727
ord2504
ord2546
ord4480
ord6371
ord940
ord6868
ord941
ord798
ord3719
ord3506
ord3171
ord3178
ord3175
ord5188
ord2598
ord5774
ord6006
ord3313
ord5444
ord6388
ord4177
ord6313
ord964
ord2800
ord1989
ord2912
ord535
ord6466
ord942
ord859
ord4704
ord6195
ord5949
ord4229
ord2294
ord2362
ord2290
ord2293
ord861
ord3312
ord536
ord858
ord825
ord324
ord567
ord540
ord538
ord4155
ord641
ord616
ord800
ord3592
ord4419
ord4621
ord4075
ord3074
ord3820
ord3826
ord3825
ord2971
ord3076
ord2980
ord3257
ord2570
ord4213
ord2015
ord2403
ord1115

msvcrt

_wtoi
_purecall
__CxxFrameHandler
wcscmp
wcslen
free
wcschr
_CxxThrowException
fgetws
fgets
_mbschr
malloc
??1type_info@@UAE@XZ
__dllonexit
_onexit
_initterm
_adjust_fdiv

kernel32

LocalAlloc
GetACP
MulDiv
MultiByteToWideChar
WideCharToMultiByte
LocalFree
lstrlenW

user32

EnableWindow
RegisterWindowMessageW
GetDC
RegisterClipboardFormatW
ReleaseDC
SendMessageW

gdi32

GetDeviceCaps

Exports

Exports

CreateExportInterface
CreateImportInterface
GetInterfaceVersion

Sections

.text
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
PluginHelpers.dll
.dll windows:6 windows x86 arch:x86

d20a95f336c06329af7ff2ea7ce9e3e2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\_code\ToDoList_8.3\Plugins\Release\PluginHelpers.pdb

Imports

kernel32

FreeLibrary
GlobalSize
GetLastError
SystemTimeToFileTime
LocalFileTimeToFileTime
Sleep
lstrcpyW
GlobalUnlock
GlobalLock
MoveFileExW
FileTimeToSystemTime
GlobalAlloc
GlobalFree
LocalFree
FormatMessageW
WideCharToMultiByte
LCMapStringW
GetLocaleInfoW
LocalAlloc
MulDiv
GetACP
GetVersionExW
GetCurrentThreadId
InitializeCriticalSectionAndSpinCount
EnterCriticalSection
GetProcAddress
GetModuleHandleW
GetModuleFileNameW
CreateProcessW
GetCurrentProcess
WaitForSingleObject
CloseHandle
lstrcpyA
GetTimeFormatW
GetTempPathW
SetFileAttributesW
RemoveDirectoryW
GetFileAttributesW
FindNextFileW
FindFirstFileW
FindClose
FileTimeToLocalFileTime
DeleteFileW
CreateDirectoryW
ExpandEnvironmentStringsW
LoadLibraryW
MultiByteToWideChar
lstrlenW
DecodePointer
LeaveCriticalSection
SetEvent
ResetEvent
WaitForSingleObjectEx
CreateEventW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
OutputDebugStringW
DeleteCriticalSection

mfc140u

ord5882
ord13028
ord8776
ord8773
ord4881
ord3869
ord6579
ord1171
ord540
ord1179
ord2753
ord14573
ord3874
ord2994
ord6795
ord4477
ord3970
ord2534
ord2257
ord1182
ord12691
ord1655
ord8505
ord551
ord6592
ord2256
ord3182
ord1068
ord362
ord4648
ord13085
ord13086
ord3957
ord258
ord3316
ord846
ord261
ord4856
ord3236
ord3849
ord8757
ord8719
ord1687
ord1524
ord12643
ord14461
ord8499
ord4312
ord2899
ord4806
ord1711
ord13053
ord14623
ord12367
ord11971
ord11972
ord5893
ord6332
ord1449
ord973
ord6837
ord5114
ord1142
ord14606
ord13669
ord5585
ord5588
ord5581
ord500
ord8464
ord4834
ord8360
ord8756
ord14410
ord14409
ord14417
ord12884
ord4664
ord12762
ord2996
ord5117
ord1653
ord7069
ord5422
ord1185
ord554
ord8712
ord8225
ord13258
ord13257
ord13964
ord7027
ord9468
ord4882
ord14416
ord4663
ord1692
ord290
ord12559
ord5109
ord2389
ord4890
ord5322
ord8817
ord14137
ord1511
ord883
ord12569
ord845
ord6489
ord8345
ord7820
ord5419
ord1450
ord974
ord14657
ord12405
ord14604
ord12348
ord14411
ord12763
ord2990
ord5921
ord1690
ord1689
ord1525
ord1523
ord287
ord280
ord285
ord3009
ord4323
ord2378
ord2383
ord2385
ord266
ord265
ord2304
ord2345
ord7654
ord6220
ord13756
ord3305
ord3302
ord10255
ord8210
ord2761
ord1476
ord14785
ord10285
ord10287
ord10286
ord10284
ord10288
ord5652
ord11725
ord11726
ord9139
ord12089
ord3838
ord3833
ord11936
ord14588
ord8965
ord12220
ord6978
ord11392
ord11002
ord9256
ord3266
ord13878
ord12262
ord12258
ord1722
ord1744
ord1770
ord1756
ord6751
ord1513
ord296
ord286
ord1045
ord4815
ord2246
ord2390
ord6566
ord2522
ord1777
ord4936
ord5003
ord4948
ord4966
ord4960
ord4954
ord5013
ord4997
ord4942
ord5019
ord4974
ord4912
ord4927
ord4988
ord4502
ord5790
ord9693
ord4494
ord3055
ord14590
ord7923
ord14596
ord6877
ord1514
ord325
ord1053
ord2365
ord324
ord1052
ord2408
ord2411
ord2376
ord2410
ord485
ord2268
ord2374
ord2184
ord2300
ord2399
ord8123
ord12430
ord2209
ord13544
ord11717
ord13703
ord5935
ord2682
ord12124
ord3941
ord3371
ord3372
ord3265
ord12168
ord4886
ord1002
ord5533
ord6973
ord6865
ord5249
ord5549
ord5760
ord9350
ord5525
ord5252
ord5411
ord5228
ord7722
ord7723
ord7712
ord5409
ord8219
ord9209
ord1391
ord890
ord13070
ord1108
ord4171
ord4649
ord1663
ord8182
ord2255
ord269
ord1043
ord2284
ord2242
ord6493
ord3146
ord13335
ord5172
ord10293
ord8742
ord4992
ord5007
ord4931
ord1713
ord9297
ord9377
ord3147
ord2993
ord3872
ord9128
ord8186
ord12126
ord12134
ord9127
ord2660
ord2768
ord10624
ord7485
ord2540
ord3971
ord884
ord1559
ord3954
ord7073
ord1070
ord8365
ord8811
ord5210
ord13022
ord14123
ord14127
ord13019
ord14112
ord8881
ord14115
ord13694
ord14047
ord13293
ord13289
ord13087
ord13095
ord12867
ord12953
ord450
ord12578
ord12558
ord13775
ord13261
ord2520
ord6528
ord6486
ord3882

msimg32

GradientFill

shlwapi

PathIsRelativeW
PathIsURLW
PathCanonicalizeW
PathCreateFromUrlW

vcruntime140

_purecall
memmove
wcschr
wcsstr
__vcrt_InitializeCriticalSectionEx
__FrameUnwindFilter
__CxxUnregisterExceptionObject
__CxxDetectRethrow
_except_handler4_common
__std_type_info_destroy_list
_CxxThrowException
memset
__CxxRegisterExceptionObject
memcpy
__std_terminate
__CxxExceptionFilter
__CxxQueryExceptionSize
__CxxFrameHandler3

api-ms-win-crt-heap-l1-1-0

free

api-ms-win-crt-runtime-l1-1-0

_initterm
_initterm_e
_crt_atexit
terminate
_execute_onexit_table
_register_onexit_function
_seh_filter_dll
abort
_errno
_configure_narrow_argv
_invalid_parameter_noinfo
_initialize_onexit_table
_cexit
_initialize_narrow_environment

api-ms-win-crt-string-l1-1-0

_wcsdup
_wcsnicmp
_wcsicmp
iswdigit
wcsncmp
_strdup
strncmp

api-ms-win-crt-stdio-l1-1-0

fgetws
fgets
__stdio_common_vswprintf_s

api-ms-win-crt-convert-l1-1-0

_wtoi
wcstod

api-ms-win-crt-filesystem-l1-1-0

_wmakepath_s
_wsplitpath_s

api-ms-win-crt-time-l1-1-0

_localtime64_s
_time64

api-ms-win-crt-utility-l1-1-0

ldiv

api-ms-win-crt-locale-l1-1-0

setlocale

api-ms-win-crt-math-l1-1-0

_libm_sse2_sqrt_precise
_except1

user32

IsRectEmpty
GetForegroundWindow
IntersectRect
GetWindowRect
GetSystemMetrics
ScreenToClient
SetCursor
RegisterClipboardFormatW
CloseClipboard
IsWindowVisible
GetMessagePos
LoadCursorW
GetParent
PtInRect
OffsetRect
InflateRect
DrawFocusRect
GetSysColor
GetClientRect
InvalidateRect
TabbedTextOutW
GrayStringW
DrawTextExW
DrawTextW
EnableWindow
ReleaseCapture
SetCapture
GetKeyState
GetFocus
GetClassInfoW
DefWindowProcW
EnumClipboardFormats
DrawFrameControl
GetWindowLongW
DestroyIcon
DispatchMessageW
GetDlgItem
MessageBoxW
PostMessageW
CopyRect
IsWindow
SetWindowPos
EmptyClipboard
IsDialogMessageW
SystemParametersInfoW
GetClipboardFormatNameW
WindowFromDC
GetDC
ReleaseDC
GetDesktopWindow
LoadImageW
DrawIconEx
GetScrollPos
GetTopWindow
SetForegroundWindow
MapDialogRect
GetIconInfo
GetClassNameW
RegisterWindowMessageW
TranslateMessage
PeekMessageW
OpenClipboard
SetClipboardData
UpdateWindow
GetClipboardData
SendMessageW
SetWindowLongW
CallWindowProcW

gdi32

SetDIBits
GetObjectW
SaveDC
RoundRect
RestoreDC
GetStockObject
GetDIBits
GetDeviceCaps
DeleteObject
GetTextExtentPoint32W
Polygon
ExtTextOutW
TextOutW
SelectObject
Rectangle
RectVisible
PtVisible
IntersectClipRect
Escape
CreateSolidBrush
CreatePen
CreateCompatibleDC
CreateCompatibleBitmap
BitBlt
CopyMetaFileW

advapi32

OpenProcessToken
RegCloseKey
RegCreateKeyExW
RegDeleteValueW
RegEnumKeyW
RegEnumValueW
RegOpenKeyExW
RegQueryValueExW
GetTokenInformation

shell32

ExtractIconExW
ShellExecuteW
SHGetSpecialFolderPathW

oleaut32

OleCreatePictureIndirect
VarUdateFromDate
VarBstrFromDate
VariantTimeToSystemTime
SystemTimeToVariantTime
SysFreeString
VariantClear

comctl32

ImageList_Create
ImageList_DragShowNolock
ImageList_BeginDrag
ImageList_DragEnter
ImageList_DragMove
ImageList_Destroy
ImageList_DragLeave
ImageList_EndDrag
ImageList_GetImageInfo
ImageList_Draw
ImageList_AddMasked
ImageList_ReplaceIcon
ImageList_GetIcon
ImageList_GetIconSize
ImageList_Add
_TrackMouseEvent

api-ms-win-crt-multibyte-l1-1-0

_mbschr

mscoree

_CorDllMain

Sections

.text
Size: 190KB - Virtual size: 189KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 161KB - Virtual size: 161KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 512B - Virtual size: 76B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 980B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
RTFContentCtrl.dll
.dll windows:4 windows x86 arch:x86

976b1e5967f614893b87920de27ff690

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mfc42u

ord3312
ord4294
ord823
ord6597
ord2854
ord4155
ord4803
ord942
ord6130
ord6466
ord3870
ord3867
ord4215
ord2576
ord3649
ord2430
ord6266
ord2858
ord812
ord5858
ord559
ord801
ord541
ord2756
ord4197
ord2606
ord858
ord941
ord940
ord5568
ord2914
ord1637
ord1143
ord815
ord6371
ord4480
ord2546
ord2504
ord5727
ord3917
ord1089
ord5193
ord2388
ord3341
ord5296
ord5298
ord2717
ord4074
ord4692
ord5303
ord5285
ord5710
ord3396
ord4616
ord3733
ord561
ord3948
ord5155
ord5156
ord5154
ord4899
ord4736
ord4970
ord4942
ord4352
ord4371
ord4848
ord5283
ord4829
ord3703
ord6124
ord3747
ord4688
ord1196
ord2644
ord1662
ord1165
ord3792
ord1749
ord4369
ord4846
ord3351
ord3613
ord357
ord472
ord4282
ord5977
ord860
ord3749
ord6115
ord5784
ord2508
ord361
ord6211
ord2822
ord2910
ord922
ord2755
ord6278
ord3805
ord6279
ord926
ord6921
ord925
ord4124
ord4272
ord5679
ord6874
ord5857
ord6139
ord5604
ord665
ord354
ord6654
ord2805
ord2912
ord964
ord6313
ord4177
ord6388
ord5444
ord3313
ord6006
ord5774
ord2598
ord5188
ord3175
ord3178
ord3171
ord3506
ord3719
ord798
ord1989
ord2800
ord533
ord537
ord6381
ord6867
ord6918
ord6919
ord927
ord3211
ord4037
ord2444
ord686
ord2088
ord384
ord2745
ord4199
ord6920
ord4273
ord2776
ord6655
ord924
ord859
ord913
ord4184
ord2036
ord2099
ord3898
ord5785
ord5871
ord3568
ord3688
ord5783
ord3614
ord2836
ord2440
ord5446
ord5436
ord6379
ord5830
ord6390
ord807
ord554
ord2400
ord4263
ord2857
ord4158
ord6142
ord3284
ord5080
ord2706
ord6456
ord6140
ord1126
ord4491
ord2634
ord1173
ord4078
ord1930
ord6193
ord3133
ord3871
ord3798
ord6195
ord6871
ord4279
ord535
ord2114
ord5706
ord556
ord1088
ord6174
ord291
ord2567
ord4390
ord3569
ord2070
ord2550
ord5506
ord5571
ord433
ord464
ord1640
ord429
ord539
ord6437
ord6433
ord768
ord489
ord1899
ord4253
ord6451
ord4472
ord1808
ord700
ord398
ord5628
ord1761
ord781
ord536
ord1262
ord3758
ord2373
ord4127
ord3056
ord703
ord404
ord857
ord2133
ord2456
ord434
ord465
ord2385
ord1649
ord1826
ord5061
ord4629
ord4601
ord4710
ord4744
ord4602
ord5010
ord2507
ord4828
ord355
ord4224
ord6399
ord3447
ord3517
ord3443
ord1657
ord2078
ord4042
ord432
ord1792
ord4428
ord2505
ord293
ord4222
ord3740
ord3629
ord1635
ord2445
ord397
ord699
ord2862
ord5624
ord1644
ord2455
ord909
ord4180
ord394
ord696
ord3638
ord609
ord2372
ord2423
ord2082
ord3450
ord816
ord562
ord4283
ord4280
ord1932
ord4265
ord6375
ord3016
ord4109
ord2966
ord5755
ord6188
ord5752
ord6182
ord4324
ord6185
ord6017
ord5674
ord5732
ord5575
ord5567
ord6057
ord5860
ord3591
ord6190
ord2057
ord3706
ord783
ord2104
ord5142
ord1764
ord6362
ord2405
ord2016
ord4214
ord2573
ord4395
ord3634
ord692
ord2144
ord5945
ord5462
ord1863
ord3687
ord1230
ord283
ord5787
ord4028
ord3084
ord1115
ord1568
ord1570
ord1179
ord342
ord1240
ord1194
ord1563
ord1248
ord1250
ord1571
ord600
ord826
ord269
ord3092
ord540
ord2810
ord6868
ord5949
ord4229
ord2293
ord2350
ord800
ord825
ord324
ord538
ord641
ord3592
ord4419
ord4621
ord4075
ord3074
ord3820
ord3826
ord3825
ord2971
ord3076
ord2980
ord3257
ord3131
ord4459
ord3254
ord3142
ord2977
ord5273
ord2116
ord2438
ord5257
ord1720
ord5059
ord3744
ord6372
ord2047
ord2640
ord4435
ord4831
ord3793
ord5276
ord4347
ord6370
ord5157
ord6617
ord5867
ord6060
ord2004
ord2916
ord5880
ord2072
ord2855
ord3725
ord2436
ord5244
ord5058
ord5275
ord6365
ord5230
ord1708
ord1703
ord2381
ord4116
ord5467
ord4051
ord4360
ord2522
ord6150
ord3290
ord2371
ord6136
ord5854
ord470
ord2859
ord323
ord1634
ord1633
ord5781
ord2746
ord4118
ord3915
ord2559
ord5869
ord6168
ord5790
ord4292
ord4128
ord2406
ord640
ord755
ord3658
ord3621
ord3566
ord289
ord613
ord4270
ord341
ord818
ord654
ord3737
ord2294
ord567
ord616
ord3577
ord4418
ord3397
ord5286
ord4392
ord1768
ord6051
ord2570
ord4213
ord2015
ord2403
ord861
ord4704
ord6330
ord809
ord3087
ord2377
ord5237
ord4401
ord1767
ord4073
ord6048
ord2506
ord4992
ord4847
ord4370
ord5261

msvcrt

_wcsicmp
wcschr
_wsplitpath
_wmakepath
wcsncpy
memset
_adjust_fdiv
_initterm
_onexit
__dllonexit
??1type_info@@UAE@XZ
wcscmp
memcpy
_purecall
_ftol
_wtoi
calloc
__CxxFrameHandler
_mbschr
fgets
fgetws
_CxxThrowException
iswdigit
_wcsnicmp
wcsncmp
wcslen
free
wcstod
_strdup
setlocale
swprintf
isspace
_wtol
strncpy
memmove
strncmp
malloc
wcsstr
toupper
_wcsdup

kernel32

SetLastError
GlobalSize
GetDriveTypeW
GetVersionExW
LocalAlloc
lstrcpyA
GetVersion
FreeLibrary
GetProcessHeap
HeapAlloc
HeapFree
GetACP
LCMapStringW
MultiByteToWideChar
WideCharToMultiByte
GetLocaleInfoW
GlobalFree
FormatMessageW
LocalFree
MulDiv
GlobalAlloc
GlobalLock
GlobalUnlock
lstrcmpW
LoadLibraryW
GetCurrentProcess
GetModuleFileNameW
CreateProcessW
ExpandEnvironmentStringsW
GetTempPathW
CreateDirectoryW
GetFileAttributesW
RemoveDirectoryW
GetLastError
WaitForSingleObject
FindFirstFileW
FindNextFileW
FindClose
GetLongPathNameW
SetFileAttributesW
CloseHandle
DeleteFileW
MoveFileExW
GetModuleHandleW
GetProcAddress
lstrlenW
lstrcmpiW
GetCurrentThreadId
lstrcpyW
lstrcpynW

user32

IsClipboardFormatAvailable
GetClipboardFormatNameW
SetParent
wsprintfW
CallWindowProcW
SetWindowLongW
MapDialogRect
SetActiveWindow
SetFocus
SetWindowPos
GetForegroundWindow
GetLastActivePopup
TabbedTextOutW
GrayStringW
GetScrollPos
BeginDeferWindowPos
EndDeferWindowPos
DeferWindowPos
GetCapture
DrawEdge
SetCapture
InvalidateRect
UpdateWindow
RedrawWindow
GetParent
GetClientRect
InflateRect
SetRect
GetSysColor
SendMessageW
EnableWindow
RegisterWindowMessageW
GetWindowDC
LoadBitmapW
GetIconInfo
GetWindowLongW
GetMonitorInfoW
MonitorFromWindow
MonitorFromRect
MonitorFromPoint
SetRectEmpty
IsRectEmpty
ScreenToClient
IsWindow
GetKeyState
MapVirtualKeyW
GetKeyNameTextW
PeekMessageW
DispatchMessageW
TranslateMessage
EnumClipboardFormats
GetClipboardData
OpenClipboard
EmptyClipboard
SetClipboardData
GetDC
ReleaseDC
GetDesktopWindow
DrawIconEx
LoadImageW
DestroyIcon
DrawTextW
OffsetRect
MessageBeep
ShowCaret
KillTimer
SetTimer
GetDlgCtrlID
SetMenuDefaultItem
SetMenuInfo
CopyIcon
IntersectRect
SystemParametersInfoW
GetSystemMetrics
PtInRect
GetWindowRect
GetClassNameW
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExW
RemoveMenu
DestroyMenu
GetMenuItemCount
GetMenuItemID
InsertMenuW
LoadCursorW
SetCursor
CloseClipboard
GetNextDlgTabItem
IsWindowVisible
GetFocus
IsChild
IsDialogMessageW
LoadMenuW
GetMenuStringW
PostMessageW
GetSubMenu
GetMenuItemInfoW
SetMenuItemInfoW
IsWindowEnabled
GetMessagePos
GetWindow
GetDlgItem
GetTabbedTextExtentW
GetCaretPos
ClientToScreen
DeleteMenu
DestroyWindow
RegisterClipboardFormatW
CopyRect
ShowScrollBar
ReleaseCapture

gdi32

PtVisible
RectVisible
TextOutW
ExtTextOutW
Escape
SelectObject
EnumFontsW
CopyMetaFileW
GetDIBColorTable
CreatePalette
RealizePalette
Rectangle
DeleteDC
CreateDIBSection
CreatePen
CreateSolidBrush
RoundRect
GetTextMetricsW
CreateFontIndirectW
SetDIBits
GetDIBits
GetObjectW
DeleteObject
GetTextExtentPoint32W
GetStockObject
CreateCompatibleBitmap
CreateCompatibleDC
GetDeviceCaps
BitBlt

advapi32

RegQueryValueExW
OpenProcessToken
RegCreateKeyExW
RegOpenKeyExW
RegCloseKey
RegEnumKeyW
RegEnumValueW
GetTokenInformation
RegDeleteValueW

shell32

DragQueryFileW
ShellExecuteW
SHGetSpecialFolderPathW
DragFinish

comctl32

ImageList_ReplaceIcon
ImageList_AddMasked
ImageList_GetIconSize
ImageList_GetImageCount
ImageList_GetIcon

ole32

CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
OleCreateLinkToFile
OleCreateFromFile
OleSetContainedObject
StgCreateDocfile

olepro32

ord252

oleaut32

VariantClear
OleLoadPicturePath

urlmon

URLDownloadToFileW

shlwapi

PathCanonicalizeW
UrlCreateFromPathW
PathIsRelativeW
PathCreateFromUrlW

msimg32

GradientFill

Exports

Exports

CreateContentInterface
GetInterfaceVersion

Sections

.text
Size: 264KB - Virtual size: 263KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 44KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
RadialTree.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\_code\ToDoList_8.3\Plugins\3rdParty\RadialTree\obj\Release\RadialTree.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 904B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Resources/Cursors/Locked.cur
Resources/Cursors/NoDrag.cur
Resources/Examples/Evidence Board Photos/beetle.jpg
.jpg
Resources/Examples/Evidence Board Photos/doll.jpg
.jpg
Resources/Examples/Evidence Board Photos/doors.jpg
.jpg
Resources/Examples/Evidence Board Photos/typewriter.jpg
.jpg
Resources/Examples/Evidence Board Photos/washing line.jpg
.jpg
Resources/Examples/Evidence Board.tdl
Resources/Examples/Gantt Chart.tdl
Resources/Examples/Introduction.tdl
Resources/Examples/Introduction_Vietnamese.tdl
Resources/Examples/London Underground Photos/bank.jpg
.jpg
Resources/Examples/London Underground Photos/edgwareroad.jpg
.jpg
Resources/Examples/London Underground Photos/euston.jpg
.jpg
Resources/Examples/London Underground Photos/farringdon.jpg
.jpg
Resources/Examples/London Underground Photos/nottinghill.jpg
.jpg
Resources/Examples/London Underground Photos/southken.jpg
.jpg
Resources/Examples/London Underground Photos/temple.jpg
.jpg
Resources/Examples/London Underground Photos/tubemap.png
.png
Resources/Examples/London Underground Photos/westmin.jpg
.jpg
Resources/Examples/London Underground.tdl
Resources/Examples/MeetingMinutes.rbt
.js
Resources/Examples/Workload.tdl
Resources/Icons/sample.ico
Resources/Misc/Help.ini
Resources/Misc/IgnoreCrashDumps.reg
Resources/Misc/KeepCrashDumps.reg
Resources/Misc/ManualUpdater.ps1
.ps1
Resources/Misc/README.txt
Resources/Misc/TdlSchema.xml
Resources/Misc/TdlSchema.xsd
Resources/Misc/UltramonCompatibilityFix.reg
Resources/Scripts/File Link Verifier/Online Help.url
.url
Resources/Scripts/File Link Verifier/ToDoList_2004.ico
Resources/Scripts/File Link Verifier/examples/filiverto_test_cases.tdl
Resources/Scripts/File Link Verifier/filiverto.pyw
Resources/Stylesheets/Z_DetailedReport.xsl
.xml
Resources/Stylesheets/Z_SimpleReport.xsl
.xml
Resources/Stylesheets/Z_TimeSpentReport.xsl
.xml
Resources/Stylesheets/tgEstimatesAndActuals_eng.xsl
.xml
Resources/Stylesheets/tgEstimates_eng.xsl
.xml
Resources/Themes/ThemeBeige.xml
Resources/Themes/ThemeBlue.Original.xml
Resources/Themes/ThemeBlue.xml
Resources/Themes/ThemeBlueXP.xml
Resources/Themes/ThemeGray.xml
Resources/Themes/ThemeGreen.xml
Resources/Themes/ThemeGreenXP.xml
Resources/Themes/ThemePurple.xml
Resources/Themes/ThemeSteel.xml
Resources/Themes/ThemeVS2010.Original.xml
Resources/Themes/ThemeVS2010.xml
Resources/Themes/ThemeWhite.Original.xml
Resources/Themes/ThemeWhite.xml
Resources/Themes/ThemeWin7Basic.xml
Resources/Translations/Danish (Denmark).WordCloud.Ignore.txt
Resources/Translations/Danish (Denmark).csv
Resources/Translations/Danish (Denmark).png
.png
Resources/Translations/English (UK).WordCloud.Ignore.txt
Resources/Translations/English (US).WordCloud.Ignore.txt
Resources/Translations/English (US).csv
Resources/Translations/English (US).png
.png
Resources/Translations/Francais (France).WordCloud.Ignore.txt
Resources/Translations/Francais (France).csv
Resources/Translations/Francais (France).png
.png
Resources/Translations/German (Germany).WordCloud.Ignore.txt
Resources/Translations/German (Germany).csv
Resources/Translations/German (Germany).png
.png
Resources/Translations/Greek (Greece).csv
Resources/Translations/Greek (Greece).png
.png
Resources/Translations/Hangul (Korea).csv
Resources/Translations/Hangul (Korea).png
.png
Resources/Translations/Hebrew (Israel).WordCloud.Ignore.txt
Resources/Translations/Hebrew (Israel).csv
Resources/Translations/Hebrew (Israel).png
.png
Resources/Translations/Italiano (Italia).WordCloud.Ignore.txt
Resources/Translations/Italiano (Italia).csv
Resources/Translations/Italiano (Italia).png
.png
Resources/Translations/Japanese (Japan).WordCloud.Ignore.txt
Resources/Translations/Japanese (Japan).csv
Resources/Translations/Japanese (Japan).png
.png
Resources/Translations/Nederlands (Belgium).WordCloud.Ignore.txt
Resources/Translations/Nederlands (Belgium).csv
Resources/Translations/Nederlands (Belgium).png
.png
Resources/Translations/Polish (Poland).WordCloud.Ignore.txt
Resources/Translations/Polish (Poland).csv
Resources/Translations/Polish (Poland).png
.png
Resources/Translations/Russian (Russia).WordCloud.Ignore.txt
Resources/Translations/Russian (Russia).csv
Resources/Translations/Russian (Russia).png
.png
Resources/Translations/Simplified Chinese (China).WordCloud.Ignore.txt
Resources/Translations/Simplified Chinese (China).csv
Resources/Translations/Simplified Chinese (China).png
.png
Resources/Translations/Slovak (Slovensko).WordCloud.Ignore.txt
Resources/Translations/Slovak (Slovensko).csv
Resources/Translations/Slovak (Slovensko).png
.png
Resources/Translations/Slovenian (Slovenia).WordCloud.Ignore.txt
Resources/Translations/Slovenian (Slovenia).csv
Resources/Translations/Slovenian (Slovenia).png
.png
Resources/Translations/Spanish (Spain).WordCloud.Ignore.txt
Resources/Translations/Spanish (Spain).csv
Resources/Translations/Spanish (Spain).png
.png
Resources/Translations/Ukrainian (Ukraine).csv
Resources/Translations/Ukrainian (Ukraine).png
.png
Resources/Translations/Ukrainian (Ukriane).WordCloud.Ignore.txt
Resources/Translations/Vietnamese (Vietnam).csv
Resources/Translations/Vietnamese (Vietnam).png
.png
Resources/Translations/YourLanguage.WordCloud.Ignore.txt
Resources/Translations/YourLanguage.csv
RichEditExtensions.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\_code\ToDoList_8.3\Plugins\3rdParty\RichEditExtensions\obj\Release\RichEditExtensions.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 980B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Rtf2HtmlBridge.dll
ScrollHelper.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\_code\ToDoList_8.3\Plugins\3rdParty\ScrollHelper\obj\Release\ScrollHelper.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 932B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpreadsheetContentControlBridge.dll
.dll windows:6 windows x86 arch:x86

1fe50ea8806963f5f51e5721f20cd2bc

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\_code\ToDoList_8.3\Plugins\Release\SpreadsheetContentControlBridge.pdb

Imports

vcruntime140

_except_handler4_common
memset
__std_type_info_destroy_list
_CxxThrowException
__std_exception_destroy
__std_exception_copy
__FrameUnwindFilter

api-ms-win-crt-runtime-l1-1-0

_cexit
_crt_atexit
_execute_onexit_table
_register_onexit_function
terminate
_initialize_narrow_environment
_configure_narrow_argv
_seh_filter_dll
_initterm_e
_initterm
abort
_initialize_onexit_table

api-ms-win-crt-heap-l1-1-0

_callnewh
free
malloc

kernel32

IsDebuggerPresent
GetCurrentProcess
IsProcessorFeaturePresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
LoadLibraryW
Sleep
TerminateProcess

user32

MoveWindow
RegisterWindowMessageW
SetParent
DestroyWindow
DestroyIcon
SetWindowLongW
LoadImageW

mscoree

_CorDllMain

Exports

Exports

CreateContentInterface
GetInterfaceVersion

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 512B - Virtual size: 60B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 716B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpreadsheetContentControlCore.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\_code\ToDoList_8.3\Plugins\ContentControl\SpreadsheetContentControl\SpreadsheetContentControlCore\obj\Release\SpreadsheetContentControlCore.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
TDLTransEdit.exe
.exe windows:4 windows x86 arch:x86

d7aac8839ba90b27e0471d7f0e9d1ac0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mfc42u

ord6874
ord6051
ord1768
ord4396
ord537
ord823
ord2836
ord2440
ord922
ord3434
ord6003
ord3993
ord4272
ord3288
ord3905
ord2036
ord2099
ord5446
ord5830
ord5436
ord6379
ord6390
ord398
ord700
ord5590
ord4184
ord2755
ord6654
ord6139
ord913
ord5628
ord699
ord397
ord4124
ord5568
ord2910
ord2912
ord2800
ord964
ord6313
ord4177
ord6388
ord5444
ord3313
ord6006
ord5774
ord2598
ord5188
ord3175
ord3178
ord3171
ord3506
ord3719
ord3898
ord798
ord1989
ord912
ord4183
ord1615
ord4199
ord6865
ord6920
ord533
ord2914
ord5462
ord6381
ord2858
ord6278
ord2806
ord3805
ord6279
ord926
ord6921
ord925
ord668
ord3306
ord2773
ord2762
ord356
ord665
ord354
ord2822
ord2805
ord4197
ord6867
ord654
ord341
ord6136
ord3976
ord6918
ord6919
ord927
ord1173
ord2362
ord6193
ord4282
ord3084
ord3133
ord3792
ord5977
ord2855
ord2854
ord6871
ord6211
ord4279
ord613
ord289
ord2706
ord6655
ord1826
ord5061
ord4629
ord4601
ord4710
ord4744
ord4602
ord2776
ord4369
ord4846
ord2507
ord4828
ord355
ord4224
ord3447
ord860
ord6597
ord3991
ord2857
ord4118
ord4018
ord6115
ord4688
ord5142
ord2081
ord924
ord859
ord4155
ord1634
ord2406
ord5785
ord5871
ord3568
ord3688
ord3621
ord5783
ord4128
ord4292
ord5784
ord2745
ord3566
ord2444
ord5781
ord640
ord1633
ord323
ord2088
ord3614
ord1840
ord2574
ord5286
ord3365
ord3635
ord693
ord556
ord567
ord809
ord4238
ord755
ord5790
ord5869
ord6168
ord470
ord6238
ord6896
ord2114
ord6754
ord3281
ord6451
ord6316
ord2862
ord5624
ord1644
ord2455
ord909
ord4180
ord394
ord696
ord3638
ord2144
ord2559
ord3629
ord384
ord686
ord1635
ord2445
ord2400
ord1821
ord3397
ord3605
ord656
ord4270
ord2572
ord4394
ord3625
ord682
ord3016
ord1808
ord816
ord562
ord6166
ord6607
ord1932
ord4265
ord6375
ord4109
ord2966
ord5755
ord6188
ord5752
ord6182
ord4324
ord6185
ord6017
ord5674
ord5732
ord5575
ord5567
ord6057
ord5860
ord3591
ord6190
ord5604
ord541
ord2756
ord801
ord4219
ord5276
ord1863
ord2746
ord6898
ord2810
ord2634
ord6399
ord6398
ord3865
ord3516
ord3517
ord2631
ord6191
ord2637
ord941
ord942
ord940
ord6195
ord3658
ord3296
ord2372
ord3087
ord4294
ord2371
ord2859
ord535
ord1165
ord1662
ord2644
ord2606
ord6330
ord3494
ord4704
ord3871
ord1143
ord1637
ord2430
ord3649
ord2576
ord4215
ord4229
ord2294
ord324
ord538
ord861
ord3592
ord4419
ord4621
ord5273
ord2116
ord2438
ord5257
ord1720
ord5059
ord3744
ord6372
ord2047
ord2640
ord4435
ord4831
ord3793
ord4347
ord6370
ord5157
ord2377
ord5237
ord4401
ord1767
ord4073
ord6048
ord4992
ord5261
ord540
ord6868
ord800
ord1197
ord858
ord296
ord5208
ord2506
ord641
ord617
ord815
ord825
ord561
ord3733
ord4418
ord4616
ord4075
ord3074
ord3820
ord3826
ord3825
ord2971
ord3076
ord2980
ord3257
ord3131
ord4459
ord3254
ord3142
ord2977
ord5710
ord5285
ord5303
ord4692
ord4074
ord2717
ord5298
ord5296
ord3341
ord2388
ord5193
ord1089
ord3917
ord5727
ord2504
ord2546
ord4480
ord6371
ord4269
ord5010
ord4667
ord1569

msvcrt

__dllonexit
_wcsdup
__CxxFrameHandler
_wcsicmp
wcscmp
_onexit
_wtoi
qsort
iswdigit
_controlfp
_CxxThrowException
fgetws
wcschr
fgets
_mbschr
wcslen
isdigit
_wsplitpath
_wmakepath
wcsncpy
_wcsnicmp
wcsncmp
_ftol
iswalnum
free
memmove
_purecall
_exit
_XcptFilter
exit
_wcmdln
__wgetmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
??1type_info@@UAE@XZ

kernel32

SetFileAttributesW
CloseHandle
DeleteFileW
GetACP
MultiByteToWideChar
GetLocaleInfoW
MulDiv
lstrlenW
GetStartupInfoW
GetLastError
GetFileAttributesW
GetCurrentDirectoryW
CreateDirectoryW
CopyFileW
GetTickCount
GetTempPathW
ExpandEnvironmentStringsW
GetModuleFileNameW
lstrcpyW
GetCurrentProcess
GetProcAddress
LoadLibraryW
GetModuleHandleW
lstrcmpW
GlobalUnlock
GlobalLock
GetCurrentThreadId
lstrcmpiW
GetVersion
lstrcpynW
LCMapStringW
GetVersionExW
WideCharToMultiByte
GetUserDefaultLangID
FreeLibrary

user32

ShowScrollBar
CallWindowProcW
ClientToScreen
DestroyIcon
GetMessagePos
DrawFrameControl
MapDialogRect
SetCapture
ReleaseCapture
RedrawWindow
GetClipboardData
KillTimer
GetLastActivePopup
SetTimer
TabbedTextOutW
GrayStringW
OpenClipboard
EmptyClipboard
CloseClipboard
IntersectRect
SetRectEmpty
CopyRect
IsRectEmpty
DrawFocusRect
PtInRect
GetClassNameW
CallNextHookEx
GetScrollInfo
DrawTextW
SetWindowsHookExW
UnhookWindowsHookEx
WindowFromPoint
SetWindowPos
ScreenToClient
GetWindowRect
GetDC
ReleaseDC
MessageBoxW
MapVirtualKeyW
GetFocus
EqualRect
GetParent
GetWindow
RegisterClipboardFormatW
GetMenuItemCount
GetMenuItemID
SetMenuItemInfoW
IsChild
IsWindowEnabled
SetWindowLongW
GetDesktopWindow
DrawIconEx
GetIconInfo
GetMonitorInfoW
MonitorFromWindow
MonitorFromRect
MonitorFromPoint
IsWindowVisible
IsWindow
GetWindowLongW
GetMenuItemInfoW
UpdateWindow
EnableWindow
CheckMenuItem
RegisterWindowMessageW
GetSystemMetrics
SetMenu
LoadMenuW
EnumWindows
GetKeyState
GetKeyNameTextW
SystemParametersInfoW
SendMessageW
InvalidateRect
WindowFromDC
DrawTextA
LoadCursorW
LoadImageW
GetForegroundWindow
PostMessageW
EnableMenuItem
GetSysColor
OffsetRect
GetClientRect
InflateRect
IsZoomed

gdi32

Escape
TextOutW
RectVisible
PtVisible
SetDIBits
Polyline
ExtTextOutW
BitBlt
GetDIBits
CreateCompatibleDC
CreateCompatibleBitmap
CreatePen
CreateSolidBrush
RoundRect
GetDeviceCaps
GetObjectW
CreateFontIndirectW
DeleteObject
GetTextExtentPoint32W
GetStockObject

advapi32

RegQueryValueExW
OpenProcessToken
RegCreateKeyExW
RegOpenKeyExW
RegCloseKey
GetTokenInformation

shell32

SHGetSpecialFolderPathW

comctl32

ImageList_Draw
ImageList_AddMasked
ImageList_GetIconSize
ImageList_GetIcon
ImageList_GetImageCount
ImageList_ReplaceIcon
_TrackMouseEvent

olepro32

ord252

shlwapi

PathIsRelativeW
PathCanonicalizeW
StrCmpW

msimg32

GradientFill

version

GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueW

Sections

.text
Size: 156KB - Virtual size: 154KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
TDLUninstall.exe
.exe windows:4 windows x86 arch:x86

c37909ff516e0df16cf7b5a994dee190

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mfc42u

ord6868
ord668
ord3306
ord2773
ord2762
ord356
ord2756
ord5568
ord2910
ord665
ord354
ord6654
ord2822
ord2805
ord942
ord2912
ord964
ord6313
ord4177
ord6388
ord5444
ord3313
ord6006
ord5774
ord2598
ord5188
ord3175
ord3178
ord3171
ord3506
ord3719
ord798
ord1989
ord533
ord4197
ord537
ord6381
ord6867
ord6918
ord6919
ord4155
ord1165
ord4273
ord6655
ord859
ord823
ord2914
ord5462
ord4272
ord4124
ord925
ord6921
ord941
ord6279
ord3805
ord922
ord6278
ord926
ord2755
ord3434
ord940
ord1569
ord535
ord4184
ord6874
ord6770
ord2810
ord913
ord861
ord4199
ord2606
ord6139
ord858
ord801
ord296
ord398
ord541
ord617
ord700
ord3658
ord5214
ord538
ord1197
ord1196
ord5208
ord800
ord540
ord815
ord825
ord561
ord3733
ord4418
ord4616
ord4075
ord3074
ord3820
ord3826
ord3825
ord2971
ord3076
ord2980
ord3257
ord3131
ord4459
ord3254
ord3142
ord2977
ord5710
ord5285
ord5303
ord4692
ord4074
ord2717
ord5298
ord5296
ord3341
ord2388
ord5193
ord1089
ord3917
ord5727
ord2504
ord2546
ord4480
ord6371
ord2800
ord4269

msvcrt

_controlfp
_onexit
__dllonexit
??1type_info@@UAE@XZ
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__wgetmainargs
_wcmdln
exit
_XcptFilter
_exit
_mbschr
fgets
fgetws
_CxxThrowException
wcscmp
__CxxFrameHandler
_wcsicmp
wcschr
_wsplitpath
_wmakepath
iswdigit
wcslen

kernel32

FindNextFileW
FindClose
SetFileAttributesW
CloseHandle
DeleteFileW
MoveFileExW
GetModuleFileNameW
lstrcpyW
GetCurrentProcess
GetProcAddress
LoadLibraryW
GetModuleHandleW
FindFirstFileW
GetCurrentThreadId
lstrcmpiW
LocalFree
FormatMessageW
GetLocaleInfoW
WideCharToMultiByte
MultiByteToWideChar
LCMapStringW
GetVersionExW
GetACP
GetUserDefaultLangID
GetStartupInfoW
WaitForSingleObject
GetLastError
GetFileAttributesW
RemoveDirectoryW
lstrlenW
CreateDirectoryW
CopyFileW
GetTickCount
GetTempPathW
ExpandEnvironmentStringsW
CreateProcessW

user32

RegisterWindowMessageW
CallNextHookEx
GetClassNameW
GetWindowLongW
SetWindowsHookExW
UnhookWindowsHookEx
RegisterClipboardFormatW
PeekMessageW
TranslateMessage
IsDialogMessageW
DispatchMessageW
SetWindowLongW

advapi32

RegQueryValueExW
RegEnumKeyExW
RegCloseKey
RegDeleteKeyW
RegOpenKeyExW
RegCreateKeyExW
OpenProcessToken
GetTokenInformation

shell32

SHChangeNotify
SHGetSpecialFolderPathW
ShellExecuteW

shlwapi

PathCanonicalizeW

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

Sections

.text
Size: 36KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
TDLUpdate.exe
.exe windows:4 windows x86 arch:x86

6dd85c13562d726a41176ab0155ac52f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mfc42u

ord6770
ord4184
ord3434
ord2755
ord926
ord6278
ord3805
ord6279
ord941
ord6921
ord4124
ord4272
ord6868
ord668
ord3306
ord2773
ord2762
ord356
ord2756
ord5568
ord2910
ord665
ord354
ord6654
ord2822
ord2805
ord942
ord2912
ord964
ord6313
ord4177
ord6388
ord5444
ord3313
ord6006
ord5774
ord2598
ord5188
ord3175
ord3178
ord3171
ord3506
ord3719
ord798
ord1989
ord2800
ord533
ord4197
ord6381
ord6867
ord654
ord341
ord5854
ord6136
ord6918
ord6919
ord2371
ord4229
ord2836
ord2099
ord2114
ord4155
ord5446
ord5436
ord6379
ord6390
ord2859
ord470
ord2854
ord5871
ord3871
ord3312
ord2746
ord4078
ord2706
ord4273
ord6655
ord1634
ord2406
ord5785
ord2855
ord3568
ord3688
ord3621
ord5783
ord4128
ord4292
ord5784
ord2745
ord3566
ord2444
ord5781
ord640
ord1633
ord323
ord3614
ord1173
ord913
ord1930
ord6193
ord4282
ord3084
ord3792
ord6871
ord4279
ord859
ord2914
ord397
ord699
ord2862
ord1899
ord1829
ord1792
ord1831
ord1890
ord1897
ord1826
ord6451
ord4472
ord1808
ord5624
ord1644
ord2455
ord909
ord4180
ord394
ord696
ord3638
ord2400
ord4224
ord755
ord6168
ord4270
ord6124
ord3747
ord5142
ord4118
ord6597
ord816
ord562
ord1821
ord2423
ord1088
ord1932
ord4265
ord3016
ord2966
ord5755
ord6188
ord5752
ord6182
ord4324
ord6185
ord6017
ord5869
ord5790
ord5674
ord5732
ord5575
ord5567
ord6057
ord5860
ord3591
ord6190
ord6489
ord5462
ord1863
ord861
ord4199
ord6139
ord296
ord398
ord617
ord700
ord3658
ord5214
ord1172
ord2101
ord535
ord940
ord2606
ord6898
ord3993
ord4970
ord4704
ord289
ord538
ord3991
ord613
ord4253
ord2294
ord6481
ord567
ord541
ord2810
ord537
ord922
ord858
ord6874
ord5857
ord4419
ord2047
ord4435
ord4829
ord5283
ord1767
ord6048
ord2506
ord4992
ord4848
ord4371
ord5261
ord4352
ord4942
ord4736
ord4899
ord5154
ord5156
ord5155
ord3635
ord3365
ord5286
ord4396
ord2574
ord6593
ord823
ord4709
ord5977
ord4294
ord3087
ord2634
ord6211
ord2638
ord4254
ord768
ord801
ord693
ord6485
ord6564
ord1165
ord6525
ord6740
ord4425
ord4621
ord5273
ord2116
ord2438
ord5257
ord1720
ord5059
ord3744
ord6372
ord2046
ord2640
ord4433
ord4831
ord3793
ord5284
ord4347
ord6370
ord5157
ord2377
ord5237
ord4401
ord1768
ord4073
ord6051
ord2520
ord6584
ord1197
ord5208
ord800
ord540
ord925
ord815
ord825
ord561
ord3733
ord4418
ord4616
ord4075
ord3074
ord3820
ord3826
ord3825
ord2971
ord3076
ord2980
ord3257
ord3131
ord4459
ord3254
ord3142
ord2977
ord5710
ord5285
ord5303
ord4692
ord4074
ord2717
ord5298
ord5296
ord3341
ord2388
ord5193
ord1089
ord3917
ord5727
ord2504
ord2546
ord4480
ord6371
ord4269
ord4667
ord1569

msvcrt

__CxxFrameHandler
_purecall
memcmp
_wcsicmp
wcschr
_wsplitpath
_wmakepath
wcscmp
calloc
fclose
fseek
ftell
fwrite
fread
fopen
memcpy
memset
_wtol
iswdigit
wcslen
free
qsort
wcsrchr
_wcsdup
isspace
_CxxThrowException
fgetws
fgets
_mbschr
malloc
_exit
_XcptFilter
exit
_wcmdln
__wgetmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
??1type_info@@UAE@XZ
__dllonexit
_onexit
_controlfp

kernel32

CopyFileW
CreateDirectoryW
GetCurrentDirectoryW
lstrlenW
GetFileAttributesW
RemoveDirectoryW
WaitForSingleObject
FindFirstFileW
FindNextFileW
FindClose
GetTickCount
CreateFileW
SetFileTime
CloseHandle
DeleteFileW
GetLastError
MoveFileExW
MulDiv
Sleep
lstrcpyW
GetModuleHandleW
GetProcAddress
GetTempPathW
GetTempFileNameW
ExpandEnvironmentStringsW
CreateProcessW
GetModuleFileNameW
GetCurrentProcess
LoadLibraryW
GlobalUnlock
GlobalLock
GetCurrentThreadId
lstrcmpiW
FreeLibrary
GetCurrentThread
LocalFree
LocalAlloc
FormatMessageW
GetVersionExW
GetACP
GetLocaleInfoW
WideCharToMultiByte
MultiByteToWideChar
LCMapStringW
GetFullPathNameW
WriteFile
LocalFileTimeToFileTime
DosDateTimeToFileTime
GetFileTime
GetUserDefaultLangID
SetLastError
GetStartupInfoW
SetFileAttributesW
VirtualQuery
InterlockedCompareExchange
VirtualProtect
ResumeThread
FlushInstructionCache
SetThreadContext
GetThreadContext
VirtualFree
SuspendThread
DebugBreak
VirtualAlloc

user32

MapDialogRect
KillTimer
SetTimer
TabbedTextOutW
GrayStringW
GetSystemMetrics
GetKeyState
PeekMessageW
DispatchMessageW
IsDialogMessageW
TranslateMessage
GetClipboardData
OpenClipboard
EmptyClipboard
CloseClipboard
IsWindowVisible
GetWindow
RedrawWindow
GetDesktopWindow
DrawIconEx
IsRectEmpty
SetCursor
LoadCursorW
LoadImageW
GetDC
ReleaseDC
PtInRect
GetMessagePos
ReleaseCapture
SetCapture
EndDeferWindowPos
BeginDeferWindowPos
DestroyIcon
wsprintfW
DrawTextW
GetFocus
GetDlgItem
CopyRect
InflateRect
InvalidateRect
SystemParametersInfoW
OffsetRect
RegisterWindowMessageW
GetSysColor
ClientToScreen
PostMessageW
SendMessageW
UpdateWindow
IsWindow
IsWindowEnabled
FillRect
GetSysColorBrush
GetClientRect
EnableWindow
GetParent
CallWindowProcW
DefWindowProcW
CallNextHookEx
GetClassNameW
GetWindowLongW
SetWindowLongW
SetWindowsHookExW
UnhookWindowsHookEx
RegisterClipboardFormatW
GetWindowRect

gdi32

Escape
TextOutW
RectVisible
PtVisible
ExtTextOutW
BitBlt
CreateCompatibleDC
CreateCompatibleBitmap
CreatePen
RoundRect
GetDeviceCaps
CreateFontIndirectW
SetTextColor
SetBkColor
SetBkMode
CreateSolidBrush
GetStockObject
GetObjectW
SelectObject
GetTextExtentPoint32W
DeleteObject

advapi32

RegQueryValueExW
OpenProcessToken
GetUserNameW
RegCreateKeyExW
RegOpenKeyExW
RegCloseKey
GetTokenInformation

shell32

ShellExecuteW
SHGetSpecialFolderPathW

comctl32

_TrackMouseEvent

ole32

CoCreateInstance

oleaut32

SysFreeString
VariantClear
SysAllocString

urlmon

URLDownloadToFileW

shlwapi

PathCanonicalizeW
PathIsRelativeW
StrCmpW

wininet

InternetQueryOptionW
DeleteUrlCacheEntry

msimg32

GradientFill

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

Sections

.text
Size: 124KB - Virtual size: 121KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.detourc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.detourd
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
ToDoList.exe
.exe windows:4 windows x86 arch:x86

e0d220dbde80f0954215d5a3800bd7a3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mfc42u

ord470
ord2854
ord3871
ord3312
ord4078
ord2706
ord2567
ord6051
ord4073
ord1768
ord4390
ord5237
ord2377
ord5157
ord6370
ord4347
ord3793
ord4831
ord4435
ord2640
ord2047
ord6372
ord3744
ord5059
ord1720
ord5257
ord2438
ord2116
ord5273
ord4621
ord3569
ord2070
ord4294
ord2371
ord4401
ord384
ord3867
ord4118
ord755
ord6168
ord2372
ord6865
ord3792
ord3084
ord6195
ord5977
ord2644
ord1662
ord6597
ord6920
ord4273
ord2776
ord6655
ord924
ord859
ord3982
ord711
ord413
ord4229
ord5261
ord4370
ord4847
ord4992
ord6048
ord1767
ord5276
ord4419
ord3592
ord809
ord2114
ord5706
ord3284
ord4158
ord6617
ord807
ord554
ord556
ord325
ord4704
ord2914
ord1826
ord5061
ord4629
ord4601
ord4710
ord4744
ord4602
ord5010
ord4369
ord4846
ord2507
ord4828
ord355
ord4224
ord6399
ord3447
ord3517
ord5286
ord3397
ord3706
ord783
ord567
ord4270
ord2104
ord933
ord939
ord935
ord937
ord920
ord3049
ord836
ord5210
ord6664
ord834
ord5929
ord3875
ord3420
ord3050
ord832
ord3051
ord929
ord919
ord5852
ord2559
ord3629
ord1635
ord2445
ord2400
ord536
ord397
ord699
ord1834
ord1789
ord1899
ord1829
ord1792
ord1831
ord1890
ord1897
ord3087
ord5155
ord5156
ord5154
ord4899
ord4736
ord4970
ord4942
ord4352
ord4371
ord4848
ord5283
ord4829
ord768
ord489
ord4253
ord6451
ord818
ord4472
ord324
ord1808
ord1761
ord6871
ord5624
ord1644
ord2455
ord909
ord1173
ord4180
ord394
ord696
ord3638
ord1243
ord5268
ord2362
ord5267
ord2350
ord319
ord2293
ord2351
ord2331
ord2290
ord2332
ord2291
ord2294
ord1930
ord6193
ord4282
ord2072
ord3133
ord3798
ord5858
ord6140
ord2634
ord6211
ord4279
ord3491
ord2144
ord2081
ord609
ord2423
ord1088
ord816
ord562
ord6166
ord1821
ord3605
ord656
ord5506
ord1640
ord429
ord3443
ord1657
ord5228
ord5264
ord5571
ord2133
ord434
ord433
ord432
ord2385
ord464
ord1932
ord4265
ord6375
ord3016
ord4109
ord2966
ord5755
ord6188
ord5752
ord6182
ord4324
ord6185
ord6017
ord5869
ord5790
ord5674
ord5732
ord5575
ord5567
ord6057
ord5860
ord3591
ord6190
ord6607
ord3222
ord3403
ord3753
ord3737
ord6124
ord3747
ord5142
ord3380
ord2078
ord4042
ord6330
ord6489
ord1137
ord5462
ord4155
ord4028
ord3579
ord543
ord803
ord6303
ord521
ord2715
ord2382
ord3054
ord5094
ord5097
ord4461
ord4298
ord3345
ord5006
ord975
ord5468
ord3398
ord2874
ord2873
ord4146
ord4072
ord5233
ord2641
ord1658
ord4421
ord3618
ord674
ord366
ord4237
ord4430
ord4451
ord4493
ord2111
ord2109
ord2004
ord6878
ord5278
ord3865
ord6376
ord6191
ord4589
ord2858
ord6266
ord6374
ord3805
ord616
ord2857
ord5024
ord4718
ord4901
ord4803
ord5048
ord795
ord4532
ord4768
ord4975
ord4331
ord4577
ord5248
ord5047
ord6456
ord6594
ord6584
ord5284
ord4433
ord2046
ord4425
ord6525
ord6485
ord6564
ord4254
ord4709
ord2638
ord6593
ord6481
ord3393
ord3728
ord810
ord4668
ord6004
ord3995
ord3298
ord3282
ord4120
ord2637
ord2403
ord2015
ord4213
ord2570
ord4392
ord6732
ord6498
ord6776
ord2574
ord4396
ord3365
ord3635
ord6898
ord3993
ord3991
ord5949
ord5815
ord3642
ord837
ord930
ord838
ord6777
ord1105
ord3577
ord2631
ord5945
ord4470
ord6130
ord4524
ord4538
ord5681
ord3269
ord3348
ord3574
ord439
ord736
ord5491
ord1840
ord1933
ord5867
ord3296
ord3281
ord3905
ord6896
ord6631
ord2577
ord6150
ord2522
ord4359
ord4051
ord5467
ord4116
ord2381
ord5079
ord1702
ord1707
ord4398
ord5230
ord6365
ord5254
ord2436
ord3289
ord3479
ord6065
ord2003
ord3290
ord4360
ord1703
ord1708
ord5275
ord5058
ord5244
ord3725
ord6237
ord6316
ord3714
ord793
ord6910
ord6758
ord2053
ord1196
ord3909
ord1612
ord3694
ord5599
ord3221
ord6003
ord1941
ord6437
ord6238
ord2092
ord2085
ord3288
ord6882
ord6754
ord4400
ord3724
ord5812
ord3603
ord4638
ord1764
ord6362
ord2405
ord2016
ord4212
ord3572
ord2932
ord5886
ord3092
ord3716
ord4219
ord2809
ord326
ord2115
ord3292
ord3291
ord3356
ord2359
ord4677
ord2680
ord6771
ord2108
ord1794
ord1615
ord4447
ord5259
ord3703
ord3870
ord6466
ord6880
ord6668
ord941
ord942
ord1143
ord1637
ord2430
ord3649
ord2576
ord4215
ord4199
ord2756
ord2717
ord686
ord693
ord4197
ord6868
ord641
ord3494
ord925
ord2506
ord6113
ord2520
ord2810
ord3434

msvcrt

wcschr
isdigit
_wsplitpath
_wmakepath
towupper
wcsncpy
iswdigit
_wcsnicmp
wcsncmp
wcslen
rand
srand
time
wcstod
_strdup
setlocale
towlower
qsort
_purecall
wcsstr
toupper
?terminate@@YAXXZ
??1type_info@@UAE@XZ
_onexit
__dllonexit
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
swscanf
_initterm
_wtol
_wcsicoll
wcstoul
wcstol
swprintf
ceil
__wgetmainargs
_wcmdln
exit
_XcptFilter
_exit
isalpha
localtime
_mbschr
fgets
fgetws
_CxxThrowException
_wcsicmp
memset
memcpy
_ftol
free
__CxxFrameHandler
_wtoi
_CIpow
memmove
wcsspn
isspace
floor
malloc
_controlfp
__setusermatherr
_wcsdup
wcscmp

kernel32

ResumeThread
GetCurrentProcessId
lstrcatW
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
SetLastError
GlobalSize
GetUserDefaultLangID
GetPrivateProfileStringW
InterlockedIncrement
GetTimeFormatW
LocalAlloc
GetDriveTypeW
InterlockedDecrement
SetEndOfFile
GetFileSize
GetDateFormatW
SystemTimeToFileTime
LocalFileTimeToFileTime
lstrcmpiW
GetCurrentThreadId
lstrcpynW
GetVersion
FreeLibrary
GetNumberFormatW
GetCurrencyFormatW
LCMapStringW
MultiByteToWideChar
WideCharToMultiByte
GetLocaleInfoW
GetComputerNameW
GlobalAlloc
GlobalFree
FormatMessageW
LocalFree
GetCurrentThread
GetVersionExW
GlobalLock
GlobalUnlock
GetSystemDirectoryW
GetWindowsDirectoryW
lstrcmpW
GetCurrentProcess
GetModuleFileNameW
CreateProcessW
ExpandEnvironmentStringsW
GetTempFileNameW
GetTempPathW
MoveFileW
GetTickCount
CopyFileW
CreateDirectoryW
SetCurrentDirectoryW
GetCurrentDirectoryW
GetFileAttributesW
WaitForSingleObject
FindFirstFileW
FindNextFileW
FindClose
GetLongPathNameW
FileTimeToLocalFileTime
FileTimeToSystemTime
CreateFileW
SetFileTime
DeleteFileW
MoveFileExW
GetProcessHeap
HeapAlloc
HeapFree
GetACP
MulDiv
RemoveDirectoryW
OpenProcess
SetFileAttributesW
Sleep
lstrlenW
LoadLibraryW
CloseHandle
CreateMutexW
GetLastError
lstrcpyW
GetModuleHandleW
GetProcAddress
lstrlenA
VirtualQuery
InterlockedCompareExchange
VirtualProtect
FlushInstructionCache
SetThreadContext
GetThreadContext
VirtualFree
SuspendThread
DebugBreak
VirtualAlloc
SetThreadPriority
WinExec
InterlockedExchange
GetStartupInfoW

user32

AppendMenuW
IsMenu
GetMenuItemInfoW
SetMenuItemInfoW
GetSubMenu
DeleteMenu
GetMenuState
ModifyMenuW
GetMenuStringW
SetMenuInfo
GetMenuItemCount
GetMenuItemID
InsertMenuW
PostMessageW
GetKeyState
MapVirtualKeyW
GetKeyNameTextW
GetKeyboardLayout
OpenInputDesktop
CloseDesktop
GetLastInputInfo
PeekMessageW
DispatchMessageW
UpdateWindow
TranslateMessage
EnumClipboardFormats
GetClipboardData
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
PtInRect
FillRect
EnableWindow
GetFocus
GetDlgItem
InvalidateRect
IsWindowEnabled
GetSysColorBrush
CallWindowProcW
DefWindowProcW
DrawTextW
GetWindowThreadProcessId
RegisterClipboardFormatW
LoadBitmapW
DrawIconEx
GetIconInfo
GetWindowLongW
GetMonitorInfoW
MonitorFromWindow
MonitorFromRect
MonitorFromPoint
MessageBoxW
WindowFromDC
GetClientRect
IsRectEmpty
DrawTextA
GetTabbedTextExtentW
SetCursor
LoadCursorW
LoadImageW
GetDC
ReleaseDC
CopyRect
InflateRect
DestroyIcon
LoadMenuW
GetSysColor
GetForegroundWindow
GetParent
IsWindow
SendMessageW
SetForegroundWindow
GetDesktopWindow
RegisterWindowMessageW
OffsetRect
IntersectRect
SystemParametersInfoW
IsIconic
GetWindowRect
GetSystemMetrics
ScreenToClient
ClientToScreen
GetWindowTextW
wvsprintfW
GetWindow
EqualRect
IsChild
GetNextDlgTabItem
ChildWindowFromPoint
WindowFromPoint
CopyIcon
SetRect
MapDialogRect
RedrawWindow
SetCapture
ReleaseCapture
GetMessagePos
TrackPopupMenuEx
IsClipboardFormatAvailable
GetClipboardFormatNameW
wsprintfW
KillTimer
GetDlgCtrlID
GetLastActivePopup
ShowScrollBar
UnhookWindowsHookEx
SetWindowsHookExW
SetWindowLongW
GetClassNameW
CallNextHookEx
DrawFrameControl
SetRectEmpty
IsWindowVisible
SetTimer
TabbedTextOutW
GrayStringW
GetScrollPos
SetParent
BeginDeferWindowPos
EndDeferWindowPos
SetWindowPos
DeferWindowPos
GetScrollInfo
GetCapture
IsZoomed
CheckMenuRadioItem
TrackPopupMenu
SetMenuDefaultItem
SetMenu
RegisterHotKey
UnregisterHotKey
LockWindowUpdate
SetActiveWindow
SetFocus
RegisterClassW
LoadIconW
GetClassInfoW
IsCharAlphaNumericW
GetDoubleClickTime
TrackMouseEvent
GetWindowDC
DrawFocusRect
GetActiveWindow
CreateWindowExW
GetCaretPos
DrawEdge
ScrollWindowEx
SetScrollPos
SubtractRect
GetScrollRange
EndPaint
BeginPaint
ShowCaret
FindWindowW
FindWindowExW
DrawAnimatedRects
DestroyCursor
GetCursor
PostThreadMessageW
EnumWindows
SendMessageTimeoutW
RemoveMenu
CheckMenuItem
EnableMenuItem
MessageBeep
DestroyWindow
SetWindowTextW
DragDetect
MoveWindow
ShowWindow
GetCursorPos
CreatePopupMenu
UnionRect
IsDialogMessageW

gdi32

GetTextColor
Polygon
GetDIBColorTable
Escape
TextOutW
RectVisible
PtVisible
SetDIBits
ExtTextOutW
BitBlt
SetTextColor
SetBkColor
SetBkMode
SelectObject
DeleteDC
GetDIBits
SaveDC
RestoreDC
DeleteObject
CreateFontIndirectW
GetObjectW
SetPixelV
Rectangle
Polyline
GetWindowOrgEx
LineTo
MoveToEx
GetCurrentObject
SetTextJustification
EnumFontsW
CopyMetaFileW
CreatePalette
RealizePalette
GetStockObject
GetDeviceCaps
GetTextExtentPoint32W
GetTextMetricsW
RoundRect
CreateSolidBrush
CreatePen
GetBkColor
CreateCompatibleBitmap
CreateDIBSection
CreateCompatibleDC

advapi32

RegDeleteKeyW
OpenProcessToken
GetUserNameW
RegCreateKeyExW
RegOpenKeyExW
RegCloseKey
RegEnumKeyExW
RegSetValueExW
RegDeleteValueW
RegQueryValueW
RegQueryValueExW
RegEnumValueW
RegEnumKeyW
GetTokenInformation

shell32

SHAppBarMessage
SHBrowseForFolderW
SHGetPathFromIDListW
SHGetMalloc
StrStrW
SHGetFileInfoW
ExtractIconExW
SHChangeNotify
SHGetSpecialFolderPathW
ShellExecuteW
DragQueryFileW
Shell_NotifyIconW
DragFinish

comctl32

ImageList_GetImageCount
ImageList_Remove
ImageList_Draw
ImageList_AddMasked
ImageList_GetIconSize
ImageList_GetIcon
_TrackMouseEvent
ImageList_GetImageInfo
ImageList_Destroy
ImageList_Create
ImageList_DragEnter
ImageList_DragLeave
ImageList_BeginDrag
ImageList_DragMove
ImageList_DragShowNolock
ImageList_EndDrag
ImageList_ReplaceIcon

ole32

StgCreateDocfile
CoCreateInstance
OleCreateFromFile
OleCreateLinkToFile
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
OleSetContainedObject
OleRun
CoInitialize
CoUninitialize

olepro32

ord252

oleaut32

GetErrorInfo
SysAllocStringLen
SysStringByteLen
SysAllocStringByteLen
SysFreeString
SysAllocString
OleLoadPicturePath
VariantClear

urlmon

URLDownloadToFileW

shlwapi

PathCanonicalizeW
PathRelativePathToW
PathIsURLW
UrlCreateFromPathW
PathCreateFromUrlW
StrCmpW
PathIsRelativeW

msimg32

GradientFill

rpcrt4

UuidFromStringW

wininet

DeleteUrlCacheEntry
InternetQueryOptionW

version

VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW

winmm

PlaySoundW

Sections

.text
Size: 2.6MB - Virtual size: 2.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 444KB - Virtual size: 442KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 176KB - Virtual size: 345KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.detourc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.detourd
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 520KB - Virtual size: 516KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
ToolStripToolTip.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\_code\ToDoList_8.3\Plugins\3rdParty\ToolStripEx\obj\Release\ToolStripToolTip.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 952B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
TransText.dll
.dll windows:4 windows x86 arch:x86

9871efef5eb5448f221bfe91c8e39a68

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mfc42u

ord665
ord354
ord2805
ord942
ord533
ord6381
ord6867
ord654
ord341
ord3976
ord2855
ord2854
ord2914
ord1795
ord1809
ord1920
ord1857
ord1856
ord1850
ord1851
ord1937
ord4078
ord1834
ord2862
ord1789
ord1829
ord1792
ord1831
ord1890
ord1897
ord1826
ord3087
ord5624
ord1644
ord2455
ord909
ord1173
ord4180
ord394
ord696
ord3638
ord536
ord6770
ord812
ord6140
ord559
ord3312
ord3792
ord3798
ord3867
ord1808
ord4224
ord5462
ord1863
ord926
ord3805
ord2806
ord2822
ord4197
ord925
ord859
ord6136
ord924
ord922
ord6655
ord2776
ord6919
ord6921
ord6278
ord6279
ord6918
ord6640
ord2932
ord5886
ord2859
ord3871
ord6195
ord6920
ord6865
ord6868
ord860
ord4155
ord1137
ord1179
ord342
ord1248
ord1165
ord6379
ord5436
ord2099
ord2036
ord6390
ord5830
ord5446
ord2440
ord2836
ord3898
ord4199
ord537
ord941
ord940
ord1615
ord4183
ord912
ord1989
ord4272
ord798
ord823
ord3719
ord3506
ord3171
ord3178
ord3175
ord5188
ord2598
ord5774
ord6006
ord3313
ord5444
ord6388
ord4177
ord6313
ord964
ord2800
ord2912
ord2910
ord5568
ord4124
ord397
ord699
ord3658
ord5628
ord861
ord541
ord801
ord2756
ord913
ord6139
ord2810
ord6874
ord3434
ord6654
ord2755
ord5852
ord4184
ord2606
ord5590
ord858
ord535
ord700
ord825
ord540
ord398
ord800
ord538

msvcrt

??1type_info@@UAE@XZ
_onexit
__dllonexit
malloc
_initterm
fgets
fgetws
_CxxThrowException
_adjust_fdiv
_mbschr
isalnum
isspace
_wmakepath
_wsplitpath
isdigit
wcschr
iswupper
free
iswalnum
wcslen
wcsncpy
_purecall
strncpy
memset
memcpy
iswdigit
_wcsicmp
qsort
_wtoi
iswlower
towupper
towlower
wcscmp
__CxxFrameHandler

kernel32

LoadLibraryW
GetProcAddress
GetCurrentProcess
lstrlenW
lstrcmpiW
WideCharToMultiByte
lstrcpynW
lstrcpyW
GetLocaleInfoW
GetACP
GetUserDefaultLangID
MultiByteToWideChar
LCMapStringW
DeleteFileW
CloseHandle
SetFileAttributesW
GetFileAttributesW
GetCurrentDirectoryW
CreateDirectoryW
GetTempPathW
ExpandEnvironmentStringsW
GetModuleFileNameW
lstrcmpW
GetCurrentThreadId
MulDiv

user32

GetTabbedTextExtentW
SetMenuItemInfoW
GetMenuStringW
RegisterClipboardFormatW
MapVirtualKeyW
GetKeyNameTextW
GetMenu
IsWindow
GetMenuItemInfoW
GetClassNameW
CallNextHookEx
UnhookWindowsHookEx
GetWindowLongW
GetDC
GetSystemMetrics
SetWindowsHookExW
GetWindow
IsMenu
GetSubMenu
SendMessageW
GetMenuItemCount
GetMenuItemID
GetParent
RegisterWindowMessageW
GetDlgCtrlID
ReleaseDC
SetWindowLongW
PostMessageW
CallWindowProcW

gdi32

GetDeviceCaps
GetTextMetricsW
GetTextExtentPoint32W

advapi32

OpenProcessToken
GetTokenInformation

shell32

SHGetSpecialFolderPathW

shlwapi

PathCanonicalizeW
PathIsRelativeW

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

Exports

Exports

CreateTransTextInterface
GetInterfaceVersion

Sections

.text
Size: 68KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 872B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
TreeViewHelper.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\_code\ToDoList_8.3\Plugins\3rdParty\TreeViewHelper\obj\Release\TreeViewHelper.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 948B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
UIComponents.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\_code\ToDoList_8.3\Plugins\3rdParty\UIComponents\obj\Release\UIComponents.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 920B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
WebBrowserEx.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\_code\ToDoList_8.3\Plugins\3rdParty\WebBrowserEx\obj\Release\WebBrowserEx.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 932B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
WordCloudUIExtensionBridge.dll
.dll windows:6 windows x86 arch:x86

d59cb0807befe220603cdb116418961f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\_code\ToDoList_8.3\Plugins\Release\WordCloudUIExtensionBridge.pdb

Imports

vcruntime140

__FrameUnwindFilter
_except_handler4_common
memset
__std_type_info_destroy_list
_CxxThrowException
__std_exception_destroy
__std_exception_copy

api-ms-win-crt-runtime-l1-1-0

_cexit
_crt_atexit
_execute_onexit_table
_register_onexit_function
terminate
_initialize_narrow_environment
_configure_narrow_argv
_seh_filter_dll
_initterm_e
_initterm
abort
_initialize_onexit_table

api-ms-win-crt-heap-l1-1-0

_callnewh
free
malloc

kernel32

InitializeSListHead
IsProcessorFeaturePresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
IsDebuggerPresent
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
GetCurrentProcess
TerminateProcess
LoadLibraryW
Sleep

user32

RegisterWindowMessageW
MoveWindow
SetWindowLongW
SetParent
LoadImageW

mscoree

_CorDllMain

Exports

Exports

CreateUIExtensionInterface
GetInterfaceVersion

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 512B - Virtual size: 60B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 712B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
WordCloudUIExtensionCore.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\_code\ToDoList_8.3\Plugins\UIExension\WordCloudUIExtension\WordCloudUIExtensionCore\obj\Release\WordCloudUIExtensionCore.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 59KB - Virtual size: 59KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1016B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
WorkloadExt.dll
.dll windows:4 windows x86 arch:x86

23af479e31f11fb03dd4928b19d8773d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mfc42u

ord4970
ord4942
ord4352
ord4371
ord5283
ord4829
ord6136
ord2293
ord5886
ord6330
ord942
ord4848
ord2053
ord2634
ord6874
ord922
ord924
ord937
ord933
ord3898
ord2440
ord5830
ord2036
ord3568
ord3621
ord2406
ord6631
ord4803
ord5945
ord2078
ord925
ord836
ord4118
ord6597
ord3566
ord6617
ord3087
ord4470
ord5949
ord2606
ord920
ord3688
ord818
ord4270
ord755
ord470
ord2644
ord2444
ord1662
ord3494
ord2507
ord355
ord3687
ord5180
ord816
ord665
ord354
ord562
ord3614
ord4128
ord4292
ord5784
ord6166
ord1257
ord1560
ord268
ord4272
ord5568
ord2910
ord1263
ord1229
ord1165
ord2966
ord5755
ord6188
ord5752
ord6182
ord4324
ord6185
ord6168
ord5869
ord5790
ord5674
ord5732
ord5575
ord5567
ord6057
ord5860
ord3591
ord6017
ord6190
ord2559
ord3133
ord5977
ord860
ord6195
ord4018
ord6871
ord6115
ord4688
ord5142
ord6211
ord4078
ord1794
ord2072
ord2081
ord1197
ord3871
ord3084
ord2755
ord940
ord4124
ord2756
ord6920
ord6279
ord6278
ord6921
ord6919
ord4273
ord6654
ord6655
ord859
ord5604
ord5854
ord6868
ord927
ord4199
ord4197
ord2822
ord913
ord4184
ord1840
ord556
ord809
ord4238
ord2706
ord6238
ord6896
ord2114
ord1088
ord3905
ord3281
ord6451
ord6316
ord4155
ord5783
ord2088
ord472
ord3291
ord1933
ord3393
ord3728
ord686
ord810
ord384
ord4266
ord6193
ord3915
ord4500
ord6437
ord2085
ord2115
ord3016
ord4120
ord2751
ord5624
ord1644
ord2455
ord2862
ord909
ord1173
ord4180
ord394
ord696
ord3638
ord939
ord935
ord3049
ord6664
ord834
ord3875
ord3420
ord3050
ord926
ord3051
ord929
ord919
ord4215
ord2576
ord3649
ord5706
ord3284
ord4158
ord807
ord554
ord2430
ord1637
ord2572
ord4394
ord3625
ord682
ord6712
ord6900
ord3292
ord3995
ord6004
ord3285
ord3577
ord5267
ord2350
ord4736
ord1930
ord3798
ord5858
ord6140
ord3867
ord3747
ord2567
ord4390
ord3569
ord2070
ord768
ord489
ord1899
ord4253
ord4472
ord1808
ord700
ord398
ord5628
ord1761
ord4638
ord1764
ord6362
ord2405
ord2016
ord4212
ord2568
ord4391
ord3347
ord3572
ord692
ord4220
ord2932
ord2400
ord5259
ord4055
ord5263
ord1712
ord4752
ord1772
ord4042
ord1941
ord6504
ord6758
ord6911
ord5880
ord2916
ord2004
ord6266
ord2858
ord5867
ord6174
ord291
ord3290
ord6150
ord2522
ord4360
ord4051
ord5467
ord4116
ord2381
ord1703
ord1708
ord5230
ord6365
ord5275
ord5058
ord5244
ord2436
ord3725
ord559
ord812
ord4263
ord6142
ord5080
ord6456
ord1126
ord4491
ord2144
ord3629
ord1635
ord2445
ord1821
ord3605
ord656
ord1932
ord4265
ord6375
ord4109
ord5599
ord397
ord699
ord1792
ord609
ord2423
ord3706
ord783
ord2104
ord6124
ord4428
ord4369
ord4846
ord2505
ord293
ord4222
ord3740
ord5917
ord6736
ord6516
ord6708
ord6607
ord4224
ord4418
ord3397
ord5286
ord4392
ord1768
ord6051
ord2570
ord4899
ord5154
ord5156
ord5155
ord1143
ord3948
ord561
ord815
ord3733
ord4616
ord3396
ord5710
ord5285
ord5303
ord4692
ord4074
ord2717
ord1863
ord1137
ord1115
ord1568
ord1570
ord1179
ord342
ord1240
ord1194
ord1563
ord1248
ord1250
ord1571
ord600
ord826
ord269
ord4213
ord2015
ord2403
ord4396
ord4704
ord535
ord6898
ord4229
ord2294
ord2362
ord825
ord324
ord540
ord858
ord5298
ord5296
ord3341
ord2388
ord5193
ord1089
ord3917
ord5727
ord2504
ord2546
ord4480
ord6371
ord6466
ord2099
ord6379
ord5436
ord2836
ord6390
ord5446
ord2745
ord5929
ord3792
ord5785
ord3749
ord941
ord6754
ord3909
ord3288
ord2854
ord2855
ord2746
ord2857
ord2859
ord2372
ord5871
ord4294
ord3991
ord3282
ord3993
ord6003
ord3805
ord5857
ord3983
ord341
ord654
ord3298
ord538
ord2092
ord4282
ord693
ord3635
ord3365
ord2574
ord3658
ord2810
ord2371
ord4279
ord289
ord323
ord1633
ord1634
ord5781
ord640
ord613
ord3737
ord6139
ord3312
ord3296
ord823
ord537
ord567
ord541
ord2057
ord616
ord801
ord861
ord641
ord800
ord3592
ord4419
ord4621
ord4075
ord3074
ord3820
ord3826
ord3825
ord2971
ord3076
ord2980
ord3257
ord3131
ord4459
ord3254
ord3142
ord2977
ord5273
ord2116
ord2438
ord5257
ord1720
ord5059
ord3744
ord6372
ord2047
ord2640
ord4435
ord4831
ord3793
ord5276
ord4347
ord6370
ord5157
ord2377
ord5237
ord4401
ord1767
ord4073
ord6048
ord2506
ord4992
ord4847
ord4370
ord5261

msvcrt

free
malloc
wcsncpy
iswdigit
_wcsnicmp
wcsncmp
_wtoi
wcstod
_wsplitpath
setlocale
towupper
towlower
iswupper
iswlower
memmove
swprintf
_wtol
_wmakepath
_wcsdup
_wcsicmp
_strdup
_CIfmod
memcpy
qsort
memset
wcscmp
_purecall
_ftol
__CxxFrameHandler
??1type_info@@UAE@XZ
_except_handler3
?terminate@@YAXXZ
__dllonexit
_onexit
_initterm
_adjust_fdiv
_CxxThrowException

kernel32

lstrcmpiW
GetCurrentThreadId
GetVersionExW
GetModuleHandleW
GetModuleFileNameW
GetFileAttributesW
lstrcpynW
GetTimeFormatW
GetDateFormatW
FileTimeToLocalFileTime
FileTimeToSystemTime
SystemTimeToFileTime
LocalFileTimeToFileTime
GetCurrentThread
GetACP
lstrcpyW
LCMapStringW
GetLocaleInfoW
lstrlenW
GetLastError
LocalFree
GetCurrentProcess
LoadLibraryW
GetProcAddress
FreeLibrary
GlobalLock
GlobalUnlock
GlobalAlloc
GlobalReAlloc
GlobalFree
MulDiv
VirtualQuery
InterlockedCompareExchange
VirtualProtect
ResumeThread
FlushInstructionCache
SetThreadContext
GetThreadContext
VirtualFree
SuspendThread
DebugBreak
VirtualAlloc
SetLastError
LocalAlloc

user32

IntersectRect
EqualRect
IsWindowVisible
GetWindowRect
IsRectEmpty
GrayStringW
DrawTextW
TabbedTextOutW
GetKeyState
ReleaseCapture
SetCapture
PtInRect
DrawFrameControl
DrawFocusRect
GetClassInfoW
DefWindowProcW
LoadCursorW
InflateRect
SetRectEmpty
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
GetLastActivePopup
ReleaseDC
GetFocus
SetWindowLongW
LoadIconW
OffsetRect
ChildWindowFromPoint
UpdateWindow
ScreenToClient
GetMessagePos
PostMessageW
GetClipboardData
GetParent
LockWindowUpdate
IsWindow
GetClientRect
InvalidateRect
SendMessageW
GetSysColor
EnableWindow
GetSystemMetrics
RegisterWindowMessageW
GetForegroundWindow
MapDialogRect
CallNextHookEx
SetWindowsHookExW
UnhookWindowsHookEx
GetWindowDC
IsWindowEnabled
GetMenuItemCount
GetMenuItemID
GetSubMenu
SetMenuDefaultItem
RedrawWindow
SetParent
DestroyIcon
RegisterClipboardFormatW
GetNextDlgTabItem
IsChild
GetWindow
GetDlgItem
DeferWindowPos
EndDeferWindowPos
BeginDeferWindowPos
SetRect
CopyIcon
LoadMenuW
GetClassNameW
CopyRect
GetCursor
GetCapture
CallWindowProcW
UnionRect
GetScrollRange
ShowWindow
GetScrollInfo
SubtractRect
GetCursorPos
GetDlgCtrlID
ClientToScreen
DragDetect
MoveWindow
SetFocus
SetScrollPos
ScrollWindowEx
GetScrollPos
KillTimer
SetTimer
LoadBitmapW
GetDesktopWindow
DrawIconEx
GetIconInfo
GetMonitorInfoW
MonitorFromWindow
MonitorFromRect
MonitorFromPoint
WindowFromDC
DrawTextA
SetCursor
LoadImageW
ShowScrollBar
SetWindowPos
GetWindowLongW
MapVirtualKeyW
GetKeyNameTextW
SystemParametersInfoW
GetDC

gdi32

Polyline
SetDIBits
GetWindowOrgEx
GetBkColor
RoundRect
GetTextMetricsW
CreateFontIndirectW
DeleteObject
Escape
ExtTextOutW
TextOutW
RectVisible
PtVisible
Polygon
Rectangle
GetStockObject
GetObjectW
SelectPalette
RealizePalette
GetDIBits
CreatePen
CreateFontW
GetSystemPaletteEntries
CreatePalette
GetDeviceCaps
CreateSolidBrush
BitBlt
SelectObject
GetTextExtentPoint32W
CreateCompatibleBitmap
CreateCompatibleDC

advapi32

RegCreateKeyExW
RegOpenKeyExW
RegCloseKey
RegQueryValueExW

shell32

ExtractIconExW

comctl32

ImageList_Destroy
ImageList_Draw
ImageList_Create
_TrackMouseEvent
ImageList_GetIcon
ImageList_ReplaceIcon
ImageList_GetIconSize
ImageList_GetImageCount
ImageList_GetImageInfo
ImageList_DragEnter
ImageList_BeginDrag
ImageList_DragMove
ImageList_DragShowNolock
ImageList_AddMasked
ImageList_DragLeave
ImageList_EndDrag

olepro32

ord252

msimg32

GradientFill

shlwapi

PathCanonicalizeW

Exports

Exports

CreateUIExtensionInterface
GetInterfaceVersion

Sections

.text
Size: 344KB - Virtual size: 341KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.detourc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.detourd
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 48KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
iCalImportExport.dll
.dll windows:4 windows x86 arch:x86

d2d8f5a7560d2e9b5b079a932fc8fa5e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mfc42u

ord6371
ord4480
ord2546
ord2504
ord5727
ord3917
ord1089
ord5193
ord2388
ord3341
ord5296
ord5298
ord2717
ord4074
ord4692
ord5303
ord5285
ord5710
ord3948
ord3396
ord4616
ord4418
ord3733
ord561
ord815
ord836
ord834
ord3805
ord3050
ord941
ord2606
ord5568
ord2910
ord537
ord929
ord919
ord2755
ord6921
ord6919
ord924
ord859
ord4199
ord533
ord858
ord1165
ord2099
ord6379
ord2836
ord2914
ord5462
ord1863
ord1173
ord1568
ord1570
ord1179
ord342
ord1240
ord1194
ord1563
ord1115
ord1248
ord1250
ord1571
ord600
ord826
ord269
ord3753
ord3403
ord3222
ord3049
ord3420
ord3875
ord6920
ord4197
ord2756
ord541
ord5857
ord801
ord937
ord540
ord6868
ord2810
ord535
ord6466
ord942
ord2506
ord538
ord800
ord798
ord3719
ord3506
ord3171
ord3178
ord3175
ord5188
ord2598
ord5774
ord6006
ord3313
ord5444
ord6388
ord5436
ord6390
ord5446
ord6278
ord6655
ord940
ord5604
ord5929
ord6664
ord832
ord397
ord4183
ord912
ord925
ord922
ord699
ord823
ord6139
ord6874
ord3658
ord4229
ord2350
ord641
ord324
ord4419
ord4621
ord4075
ord3074
ord3820
ord3826
ord3825
ord2971
ord3076
ord2980
ord3257
ord3131
ord4459
ord3254
ord3142
ord2977
ord5273
ord2116
ord2438
ord5257
ord1720
ord5059
ord3744
ord6372
ord2047
ord2640
ord4435
ord4831
ord3793
ord5276
ord4347
ord6370
ord5157
ord2377
ord5237
ord4401
ord1767
ord4073
ord6048
ord4704
ord4992
ord4847
ord4370
ord5261
ord1808
ord861
ord2822
ord6279
ord4124
ord4272
ord4177
ord6313
ord964
ord2800
ord1989
ord2912
ord6381
ord825

msvcrt

__CxxFrameHandler
qsort
_wtoi
wcscmp
mktime
swscanf
_purecall
memset
_ftol
wcsncpy
_wcsicmp
wcslen
free
wcschr
memcpy
_CxxThrowException
fgetws
fgets
_mbschr
malloc
??1type_info@@UAE@XZ
__dllonexit
_onexit
_initterm
_adjust_fdiv

kernel32

LocalAlloc
GetACP
MulDiv
LCMapStringW
MultiByteToWideChar
WideCharToMultiByte
lstrlenW
LocalFree
GetLocaleInfoW
FileTimeToLocalFileTime
FileTimeToSystemTime
SystemTimeToFileTime
LocalFileTimeToFileTime

user32

LoadImageW
GetDC
EnableWindow
DestroyIcon
ReleaseDC
RegisterClipboardFormatW

gdi32

GetDeviceCaps

Exports

Exports

CreateExportInterface
CreateImportInterface
GetInterfaceVersion

Sections

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
iTextSharp.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mscoree

_CorDllMain

Sections

.text
Size: 2.5MB - Virtual size: 2.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
todolist.exe.xp.manifest
.xml
unvell.ReoGrid.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\_code\ToDoList_8.3\Plugins\3rdParty\ReoGrid\obj\Release\unvell.ReoGrid.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 1.0MB - Virtual size: 1.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
unvell.ReoGridEditorControl.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\_code\ToDoList_8.3\Plugins\3rdParty\ReoGridEditorControl\obj\Release\unvell.ReoGridEditorControl.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 407KB - Virtual size: 407KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Extracted

Signatures

Files

Password: infected

Password: infected

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

File Characteristics

Imports

mscoree

Sections

.text Size: 2.4MB - Virtual size: 2.4MB

.rsrc Size: 4KB - Virtual size: 1KB

.reloc Size: 4KB - Virtual size: 12B

Password: infected

4479eb21b633e560219120830cd849ea

Headers

File Characteristics

Imports

mfc42u

msvcrt

kernel32

user32

gdi32

advapi32

shell32

comctl32

olepro32

msimg32

shlwapi

Exports

Exports

Sections

.text Size: 240KB - Virtual size: 237KB

.rdata Size: 60KB - Virtual size: 58KB

.data Size: 16KB - Virtual size: 22KB

.rsrc Size: 12KB - Virtual size: 8KB

.reloc Size: 40KB - Virtual size: 36KB

Password: infected

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

mscoree

Sections

.text Size: 50KB - Virtual size: 50KB

.rsrc Size: 1024B - Virtual size: 936B

.reloc Size: 512B - Virtual size: 12B

Password: infected

42c183bac8ef9a37defa03d7ae8fce2b

Headers

File Characteristics

Imports

mfc42u

msvcrt

kernel32

user32

gdi32

advapi32

shell32

comctl32

olepro32

msimg32

shlwapi

Exports

Exports

Sections

.text Size: 220KB - Virtual size: 217KB

.rdata Size: 68KB - Virtual size: 65KB

.data Size: 16KB - Virtual size: 23KB

.rsrc Size: 12KB - Virtual size: 11KB

.reloc Size: 36KB - Virtual size: 32KB

Password: infected

dae02f32a21e03ce65412f6e56942daa

.text
Size: 2.4MB - Virtual size: 2.4MB

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 4KB - Virtual size: 12B

.text
Size: 240KB - Virtual size: 237KB

.rdata
Size: 60KB - Virtual size: 58KB

.data
Size: 16KB - Virtual size: 22KB

.rsrc
Size: 12KB - Virtual size: 8KB

.reloc
Size: 40KB - Virtual size: 36KB

.text
Size: 50KB - Virtual size: 50KB

.rsrc
Size: 1024B - Virtual size: 936B

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 220KB - Virtual size: 217KB

.rdata
Size: 68KB - Virtual size: 65KB

.data
Size: 16KB - Virtual size: 23KB

.rsrc
Size: 12KB - Virtual size: 11KB

.reloc
Size: 36KB - Virtual size: 32KB

.text
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 1024B - Virtual size: 964B

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 772KB - Virtual size: 770KB

.rdata
Size: 116KB - Virtual size: 115KB

.data
Size: 72KB - Virtual size: 73KB

.rsrc
Size: 8KB - Virtual size: 5KB

.text
Size: 24KB - Virtual size: 24KB

.rsrc
Size: 1024B - Virtual size: 936B

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 12KB - Virtual size: 12KB

.rdata
Size: 40KB - Virtual size: 39KB

.data
Size: 1024B - Virtual size: 2KB

.gfids
Size: 512B - Virtual size: 60B

.rsrc
Size: 2KB - Virtual size: 1KB